Identity federation to secure your SaaS/Cloud assets
From a simple central point of access to your SaaS business applications to complex scenarios involving suppliers and/or consumers, keep control of your important assets.
Evidian IDaaS extensively supports Identity Federation standards, acting as an Identity provider to authenticate internal users toward SaaS apps, as a service provider to let you securely publish your own services or even as an IdP proxy to allow your partners' users access your resources in a trustworthy way.
API protection for modern IT
REST APIs are the way toward modernization, either to create custom applications or to open your IT to the outer world.
Delegate the burden of protecting your APIs to Evidian IDaaS: it can manage both API authorization with OAuth 2.0 and allow you to securely publish your APIs with access protection, ensuring only the right resources are accessed by the right app at any time.
Next generation authentication
Passwords have been identified for some time as a potential vector of data breach.
Evidian IDaaS comes with a large catalog of embedded authentication methods. From passwords combined with OTPs, TOTP, or FIDO tokens to next generation authentication means : Push Authentication with Evidian Authenticator mobile app, and up to X509 certificates based authentication. Even third party authentication services (such as Gemalto, RSA, Double Octopus, ...) can be seamlessly integrated.
SSO (Single Sign-on) to SaaS, mobile apps, on-prem or cloud applications
Security is not all about encryption, all security strategies must take into account the human factor. Today, the average internet user possesses more than one hundred online accounts, which means a lot of passwords to remember and a lot of associated risks (password re-use, weak passwords, password sharing, etc...).
Leveraging Evidian universal SSO combined with strong authentication, drastically diminishes your exposed attack surface and makes it much harder to exploit compromised credentials. In the meantime user experience is enhanced : one unique point of access whatever the location, whatever the device, to access all applications and tools.
Connect Toolkit: seamless and secure digital experience
With the embedded "Connect Toolkit", easily integrate all user facing functionalities of Evidian IDaaS into any of your existing websites. Users can authenticate, access corporate resources, enroll their smartphone as an authentication mean, check their profile... No modification is required for content and styling of the pages, just add actions to any existing HTML elements.
Security
IDaaS is built for modern web security. It offers a wide variety of authentication methods, access control to different Web resources, SSO...
By default, fine tuning of SSL protocol, secured Certificates handling, anti-replay mechanisms, hardened cookies, CORS protection, allows for trust in protecting the information streams with the highest security level.
No plugin is necessary for Web browsers and no modifications of your existing applications required.
Self-service of IDaaS user accessible features, helps secure behaviors and limits the need for help desk calls. The autonomous user does not need to contact a third party and provide sensitive information to get assistance. This function includes the following:
- Changing password (for second factor methods)
- Reseting password, by Q&A, OTP, Push, Certificate...
- Enrolling and managing authentication methods
- Accessing profile and updating it according to organization rules
In addition, Evidian IDaaS can be conveniently linked to CASB, Cloud security and Network security as a Service solutions to complement your level of protection.
Cornerstone of a Zero Trust strategy: IDaaS solutions provide a comprehensive set of features to support organizations in attaining a Zero Trust Security model. It prepares organizations to align their IAM with their Cloud strategy, with zero trust in mind.
