Category

Information security systems

Description

SafeLogin is designed to provide organizations with a higher information security level by means of advanced user authentication features using a token and a digital password.

Functionality

• Protected local login to Windows;

• Protected login to a Windows domain;

• Protected login to NDS/e-Directory tree;

• Authentication over proxy-server when browsing web pages via Internet Explorer;

• Authentication of network sessions in Check Point FireWall -1;

• Protected login to any application that requires name/password authorization (as agreed with the customer);

• Additional check of a token at a SafeLogin server (availability of the token in the data base and its status);

• SafeLogin server authenticity check by workstations;

• Remote administration of data base containing information about tokens;

• Remote monitoring of workstations with the preinstalled SafeLogin client.

Main Features

·          Easy to use -  SafeLogin provides local login to the workstation, login to a Windows domain and NDS/e-Directory, automatic login to any application that requires name and password authentication by means of a single PIN code entry.

·          Simple to administer    It is equipped with a centralized console convenient to use by one system administrator;

·          Enhanced information security   - It is achieved by minimizing the risk of user password theft, locking up a user login without the token for specified user groups, locking up the workstation after the token is withdrawn, registering a user login using token-based authentication, remote monitoring of user workstations.

Purpose

SafeLogin is designed for advanced user authentication for those who run their applications on workstations under Windows NT/2000/XP operating system with Novell Client installed to support NDS/e-Directory. The advanced authentication is carried out using data stored on a separate piece of hardware - a smart card-like token connected to PC via USB port. SafeLogin can be used for tailoring corporate information protection environment (as authentication subsystem).

Scope
With a single entry of a PIN code, SafeLogin performs:

• Local login to the workstation;

• Login to the Windows domain and NDS/e-Directory tree;

• Automatic login to any application that requires customized name/password authentication.

With the ability to store multiple login profiles on a single token, you can have a number of user logins.

SafeLogin Components

• Software that interacts with operating system access control modules installed on Client PC;

• Administration console installed on administrator’s workstation (Server).

SafeLogin Protection Tools

• User authentication on the local workstation, in the Windows domain, in NDS/e-Directory tree by means of the token;

• User login lockout without the token for specified user groups;

• Workstation lockout (or session termination) after the token is withdrawn.

SafeLogin Benefits

• Risk reduction for password theft;

• No need to remember complicated passwords;

• Simultaneous login to the system, Windows domain and NDS/e-Directory tree by means of a single PIN code entry;

• Simultaneous and easy access to heterogeneous networks and different applications due to the storage of multiple login profiles on a single token;

• More secure information to be processed while using the protected profile (a complex password is generated automatically attached to the token or workstation);

• Ability to restrict user access to the protected workstation.

Workstation Requirements

• 2 Mb free disk space;

• USB port;

• Windows NT 4.0 / 2000 / XP.