Enterprise SSO as a Service - a Cloud SSO solution for Enterprises

Enterprise SSO as a Service - a Cloud SSO solution for Enterprises

Why a cloud SSO solution with Evidian Enterprise SSO as a service?

Enterprise Single Sign-On as a Service for on-premises and cloud applications

The number of passwords required from users never stops growing. It becomes necessary to simplify access to your information system, and also to increase security by reducing the risk of loss or sharing passwords. However you do not want (or have the resources) to manage the administration and infrastructure and prefer to focus on your Business.

Companies adopt more and more SaaS applications to lower their cost and increase agility. In line with that we offer an SSO as a service solution to provide a seamless user experience by not requiring users to constantly re-enter passwords, one for each corporate and cloud application and/or environment. These goals will be achieved without having to take on unnecessary infrastructure expenses or development burden.

Providing cloud SSO to on-premises and cloud applications for less complexity and better security

  • Provide agile Single Sign-On to all users, businesses and organizations
  • Strongly increase the security level as well as the user satisfaction.
  • Free users from remembering and typing passwords.
  • Discard administration tasks and infrastructure management.
  • Eliminate investments in licenses and hardware
  • Pay per user and month, charging of recognizable units
  • Keep focus on your business
  • Substantially decrease login time
  • Reduce up to 50% of the lost password calls

By automating password management, a cloud SSO simplifies your users’ lives and lets you drive your security policy.

Optimize your costs and provide demonstrable return on investment

Evidian Enterprise SSO as a service allows real and measurable savings to be easily made. The return on investment generally allows you to recover acquisition costs within a year.

  • The reduced time spent on Login/Password entry improves productivity of employees.
  • The reduction in the number of calls related to forgotten passwords considerably reduces the cost of support. Every call to the helpdesk generates costs. Thanks to Evidian Enterprise SSO as a service, you can reduce these calls by up to 50% as employees no longer lose application passwords.
  • Moreover, you avoid the costly procedures that occur when accounts are locked after password errors.
  • Evidian Enterprise SSO as a service automatically draws up a list of active application accounts that can be periodically reported. This allows you to optimize the associated application license costs.

Improve access security

Evidian Enterprise SSO as a service eliminates one of the primary threats of security: bypassing password procedures. Now, users no longer have to remember a multitude of credentials. They simply have to remember their main password. Evidian Enterprise SSO as a service makes it unnecessary to write a password on a Post-it™, or share it with a colleague if they forget theirs. It also avoids multiple use of the same password for several applications.  

Ensure that your information system is compliant with laws and regulations

Sarbanes-Oxley, decrees on medical confidentiality, PCI DSS, GDPR or laws on financial integrity...

Evidian Enterprise SSO as a service will help you to comply with your legal and regulatory requirements. You can monitor your employees’ attempts to access applications.  An audit trail of all accesses, who accessed what at which time, is maintained and can be made available on request. This will enable you to demonstrate that your access policy is observed and fulfills its objectives.

Simplify technology for users

Evidian Enterprise SSO as a service solution

  • enters and changes application passwords automatically, on-behalf of the user.
    Users save time and access their applications with no restrictions.
  • Keeps their applications unchanged, either Windows software or web applications: applications using Windows technology, web interface, Oracle GUI, Office 365, SAP/R3, SAP Web applications or messaging.
  • supports the definition of separate password policies for each application and enforces the application password policy at every level. The passwords are stored securely and only the user knows the credentials to access the SSO.
  • secures access to hybrid environments, both web and non-web applications,  while keeping your existing infrastructure unchanged. As a result, your users will become more productive and will naturally comply with your security policy.
  • manages strong passwords for each application. Through a particular policy, you can require a re-authentication to allow Single Sign-On to be performed on sensitive applications. Employees can get on with their work without worrying about forgotten passwords, and without having to change them regularly according to ever more complex criteria: special characters, length, case, etc.
  • allows users to delegate access to their applications under the control of the Enterprise SSO security policy which is fully audited when applied and accessed. Users don’t need to reveal their passwords and accesses to the applications are audited.
  • provides Single Sign-On to their applications even if they are not connected to a network.



Starting with Evidian Enterprise SSO as a service

• When the solution is first started on a user’s workstation, it connects to a central application and the users enter their password for the last time.
• Access to applications is simple but also with a high security level.
• Evidian Enterprise SSO can change the password automatically with random passwords according to a strict policy that you define.
• The service supports the definition of separate and different password policies for each application.
• The service enforces the application password policy at every level: length, complexity, random generation, modification and expiration.
• The passwords are stored in a secure personal vault that is protected with state-of-the-art encryption.
• The key to access the SSO data is known by the end user only.
• Secure access to hybrid environments, both web and non-web applications, can now be guaranteed while keeping your existing infrastructure unchanged.
• Through a particular policy, you can require a re-authentication to allow Single Sign-On to be performed on sensitive applications.

Quick and easy deployment

Evidian Enterprise SSO as a Service can be deployed quickly:
• Existing applications and repositories do not have to be modified.
• Existing accesses will be collected and reinforced. You do not have to redefine any access rights.
• The SSO as a service provides a library of plug-ins to accelerate the enrolment of applications.
• The SSO as a service offers a set of self-service procedures. When enabled centrally, your end-users can self-enroll and register themselves to activate the Cloud SSO.

No more access rights administration tasks

Managing users for dozens of applications has become time-consuming and also a financial handicap for the company. By centralizing and managing usernames and passwords, Evidian Enterprise SSO as a service allows administrators to spend  more time on developing other systems and improving performance rather than password management tasks.

Delegate to users... delegating access rights

With Enterprise SSO as a service, a user can delegate access to an application to a colleague, without calling the helpdesk. He can do this without sharing his password, and for the time period he decides. The user can therefore anticipate his absence. The access delegated is logged and auditable by the company's Head of Security.

Password-free access to your mobile applications

Evidian Enterprise SSO as a service for mobile devices, delivers a solution that extends the Single Sign-On to Android and iOS tablets and mobile phones. It automatically and securely stores passwords and personal notes in your mobile Vault. It can also enter application passwords for you. It synchronizes your credentials with your central vault in the cloud to make them available from your workstation and mobile devices.

A non-intrusive solution

You don’t have to modify any of your applications. Evidian Enterprise SSO activates Single Sign-On in many types of applications: Windows, web, terminal emulator, etc.

A universal solution

Evidian Enterprise SSO as a service can be run from a Windows workstation, tablet PC, server, and from virtual desktops (Citrix, Microsoft, VMWare…).