Evidian Enterprise SSO
Features and components

Evidian Enterprise SSO provides:

Plug-and-play single sign-on
Extended management of access rights
Multi-factor strong authentication
Smart card management
Emergency access via primary password and PIN code reset
Mobile E-SSO for employees
Fast user switching

Plug-and-play single sign-on

Evidian Enterprise SSO frees users from having to remember all the passwords for all their applications. Using SSOWatch technology, which is already deployed across numerous organizations in Europe, Japan, and the USA, Evidian Enterprise SSO provides an easy-to-use single sign-on solution. Once authenticated by Windows (or stronger means of authentication) the user's access rights for password-protected information resources are managed by Evidian Enterprise SSO. A graphical user interface enables the integration of access to new applications in a couple of clicks, whatever the technology used, including the web.

Extended management of access rights

At the heart of Evidian Enterprise SSO, CertiPass technology provides unparalleled features for the management of authentication data. Evidian Enterprise SSO can thus meet the most stringent of organizational requirements. For example when a user is ill or on holiday, or when smart cards are lost, Evidian Enterprise SSO manages the delegation or sharing of access rights, right down to a single user, if required.

Evidian Enterprise SSO simplifies the management of multiple passwords and allows the delegation of administration functions down to the level of user groups. The number of calls due to forgotten passwords, and the associated help-desk costs, are drastically reduced.

Multi-factor strong authentication

Evidian Strong Authentication reinforces user authentication through a wide choice of techniques,and dynamically manages the authentication methods chosen by a user, a group of users or a whole department. By this means, a smooth and step-by-step rollout of strong authentication can be managed across the organization. Supported strong authentication methods include smart card/X.509, USB keys, biometrics, Active RFID,...

Smart card management

The use of smart cards as the means to store certificates for user authentication in the Windows 2000/2003 environment enhances the level of security compared to authentication by a simple login. However, the down-side of the improvement in security is the complexity of deployment and administration of the smart cards.

Evidian Strong Authentication includes a tool for managing smart cards that is specifically designed to simplify this complexity and facilitate the management of smart cards by the security administrator

Emergency access via primary password and PIN code reset

With Evidian Self-Service Password Reset, if end users lose their primary password or PIN code, they just need to click a button on their Windows login screen. After providing the correct answers to a few predefined questions, they will be able to reset their password. And this works even if they are not connected to the network (e.g. hotel room). In case of lost password, users can log in using the new password they reset themselves. It is not necessary to call the help desk.

In the case of a lost PIN code, the user must click on a button to get a “challenge” string and provide it to the help desk. The help desk provides a “response” string and the user can log in using a new PIN. If the help desk is not available, the user can log in with a temporary password.

With this solution, emergency access is available even if no Windows session is open, offline or online, at any time of the day. In addition, the solution reduces help desk costs by eliminating most password and PIN reset calls.

Mobile E-SSO for employees

With Evidian Mobile E-SSO employees can connect to their web applications via a gateway from a browser on any Internet-connected PC. The employees are authenticated against the employee LDAP directory using the appropriate web authentication method (password, smart card, one-time password,...). They are then connected to an authorized web application using the SSO data managed by Evidian Enterprise SSO.

Fast user switching

With Evidian Kiosk Mode, users can securely share the same PC without closing the Windows session. This is a great time-saver in situations where lengthy session switching would decrease productivity (hospitals, stores, newsrooms,...). To do this, user A just removes his or her smart card (or USB token,...) from the PC. User B then plugs in his or her smart card (...) and uses the PC right away. With Active RFID authentication, switching is even faster.

Want to know more? Download the white paper >>


Identity and access management for business and people Support Contact us >> Enterprise SSO: Single sign-on IAM Suite: Identity and access management OpenMaster: Service management intelligence SafeKit: Service continuity Finance Health care Manufacturing ISP/ASP Government Retail and services Telecommunications Consulting and implementation Training and certification Support Find a partner Become a partner Resources for partners Training and certification Newsdesk Press releases Calendar of events Web seminars White papers Web demos SafeKit trial Enterprise SSO trial Company Careers Offices and distributors
Evidian Enterprise SSO Overview 3 steps to E-SSO Benefits Features Brochure: Enterprise SSO Brochure: Mobile E-SSO Brochure: Password management Brochure: Data Protection with SSO Solutions White papers	... IAM Suite > Access Management > Enterprise SSO > Features and components Evidian Enterprise SSO Features and components Evidian Enterprise SSO provides: Plug-and-play single sign-on Extended management of access rights Multi-factor strong authentication Smart card management Emergency access via primary password and PIN code reset Mobile E-SSO for employees Fast user switching Plug-and-play single sign-on Evidian Enterprise SSO frees users from having to remember all the passwords for all their applications. Using SSOWatch technology, which is already deployed across numerous organizations in Europe, Japan, and the USA, Evidian Enterprise SSO provides an easy-to-use single sign-on solution. Once authenticated by Windows (or stronger means of authentication) the user's access rights for password-protected information resources are managed by Evidian Enterprise SSO. A graphical user interface enables the integration of access to new applications in a couple of clicks, whatever the technology used, including the web. Extended management of access rights At the heart of Evidian Enterprise SSO, CertiPass technology provides unparalleled features for the management of authentication data. Evidian Enterprise SSO can thus meet the most stringent of organizational requirements. For example when a user is ill or on holiday, or when smart cards are lost, Evidian Enterprise SSO manages the delegation or sharing of access rights, right down to a single user, if required. Evidian Enterprise SSO simplifies the management of multiple passwords and allows the delegation of administration functions down to the level of user groups. The number of calls due to forgotten passwords, and the associated help-desk costs, are drastically reduced. Multi-factor strong authentication Evidian Strong Authentication reinforces user authentication through a wide choice of techniques,and dynamically manages the authentication methods chosen by a user, a group of users or a whole department. By this means, a smooth and step-by-step rollout of strong authentication can be managed across the organization. Supported strong authentication methods include smart card/X.509, USB keys, biometrics, Active RFID,... Smart card management The use of smart cards as the means to store certificates for user authentication in the Windows 2000/2003 environment enhances the level of security compared to authentication by a simple login. However, the down-side of the improvement in security is the complexity of deployment and administration of the smart cards. Evidian Strong Authentication includes a tool for managing smart cards that is specifically designed to simplify this complexity and facilitate the management of smart cards by the security administrator Emergency access via primary password and PIN code reset With Evidian Self-Service Password Reset, if end users lose their primary password or PIN code, they just need to click a button on their Windows login screen. After providing the correct answers to a few predefined questions, they will be able to reset their password. And this works even if they are not connected to the network (e.g. hotel room). In case of lost password, users can log in using the new password they reset themselves. It is not necessary to call the help desk. In the case of a lost PIN code, the user must click on a button to get a “challenge” string and provide it to the help desk. The help desk provides a “response” string and the user can log in using a new PIN. If the help desk is not available, the user can log in with a temporary password. With this solution, emergency access is available even if no Windows session is open, offline or online, at any time of the day. In addition, the solution reduces help desk costs by eliminating most password and PIN reset calls. Mobile E-SSO for employees With Evidian Mobile E-SSO employees can connect to their web applications via a gateway from a browser on any Internet-connected PC. The employees are authenticated against the employee LDAP directory using the appropriate web authentication method (password, smart card, one-time password,...). They are then connected to an authorized web application using the SSO data managed by Evidian Enterprise SSO. Fast user switching With Evidian Kiosk Mode, users can securely share the same PC without closing the Windows session. This is a great time-saver in situations where lengthy session switching would decrease productivity (hospitals, stores, newsrooms,...). To do this, user A just removes his or her smart card (or USB token,...) from the PC. User B then plugs in his or her smart card (...) and uses the PC right away. With Active RFID authentication, switching is even faster. Want to know more? Download the white paper >>	Evidian NewsDesk Get regular news about secure management solutions and best practices >>

Identity and access management for business and people