iss sa le presenta los escenarios para identityguard de entrust
DESCRIPTION
TRANSCRIPT
![Page 1: ISS SA le presenta los Escenarios para IdentityGuard de Entrust](https://reader033.vdocuments.site/reader033/viewer/2022051323/5478b135b4af9fa0158b4609/html5/thumbnails/1.jpg)
© Copyright Entrust, Inc. 2010
What are the Challenges of Securing Identities online?
![Page 2: ISS SA le presenta los Escenarios para IdentityGuard de Entrust](https://reader033.vdocuments.site/reader033/viewer/2022051323/5478b135b4af9fa0158b4609/html5/thumbnails/2.jpg)
© Copyright Entrust, Inc. 2010
2
Entrust is a World Leader in Identity Management and Security Software
• Founded in 1994, publicly-listed in 1998 (NASDAQ: ENTU)
• Best-in-class technology, service and support – industry pioneer
• Over 2000 customers in 50 countries – global reach
• Geographic presence: U.S., Canada, UK, China, Germany, India and Japan
• 411 employees and 110+ patents
• 2008 Revenue: ~$100.0 million
![Page 3: ISS SA le presenta los Escenarios para IdentityGuard de Entrust](https://reader033.vdocuments.site/reader033/viewer/2022051323/5478b135b4af9fa0158b4609/html5/thumbnails/3.jpg)
Enterprise Authentication
![Page 4: ISS SA le presenta los Escenarios para IdentityGuard de Entrust](https://reader033.vdocuments.site/reader033/viewer/2022051323/5478b135b4af9fa0158b4609/html5/thumbnails/4.jpg)
© Copyright Entrust, Inc. 2010
Enterprise Identities: Problems
Protect access to intellectual property and customer data
Work from anywhere
Stay out of employees’ way
Audit access to resources
Reduce transaction costs by moving online
EmployeesPartners
Contractors
OtherBusinesses
4Mobile Devices
Other internalServers & Devices
# ofIDs
2000 2010
![Page 5: ISS SA le presenta los Escenarios para IdentityGuard de Entrust](https://reader033.vdocuments.site/reader033/viewer/2022051323/5478b135b4af9fa0158b4609/html5/thumbnails/5.jpg)
© Copyright Entrust, Inc. 2010
Enterprise Identities: Entrust’s Solution
Broad range of authentication credentials
For users, servers, devices
Enables encryption and digital signature with strong identity
EmployeesPartners
Contractors
OtherBusinesses
Mobile Devices 5
Other internalServers & Devices
![Page 6: ISS SA le presenta los Escenarios para IdentityGuard de Entrust](https://reader033.vdocuments.site/reader033/viewer/2022051323/5478b135b4af9fa0158b4609/html5/thumbnails/6.jpg)
© Copyright Entrust, Inc. 2010
Entrust IdentityGuard
• Single open platform, centralized policy management• User self administration• Deploy based on Risk, Usability, Cost
Username & Password
Grid
VersatileAuthenticationPlatform
ScratchPad Digital
Certificates
OTP Tokens
Smartcards &USB Tokens
Mutual Auth
IP-Geolocation
Machine/Device Auth
Mobile
Knowledge-Based
![Page 7: ISS SA le presenta los Escenarios para IdentityGuard de Entrust](https://reader033.vdocuments.site/reader033/viewer/2022051323/5478b135b4af9fa0158b4609/html5/thumbnails/7.jpg)
© Copyright Entrust, Inc. 2010 7
Integrating IdentityGuard
Remote Access Applications
Microsoft Windows Servers
End User
Web Authentication Applications
Enterprise Applications
& Data
Repository
![Page 8: ISS SA le presenta los Escenarios para IdentityGuard de Entrust](https://reader033.vdocuments.site/reader033/viewer/2022051323/5478b135b4af9fa0158b4609/html5/thumbnails/8.jpg)
© Copyright Entrust, Inc. 2010 8
2nd Factor Authentication
Authentication Platform
Online Application
Initial Logon
User Name?Password?
User Name?Password?
2nd Factor Authentication
2nd Factor Challenge
![Page 9: ISS SA le presenta los Escenarios para IdentityGuard de Entrust](https://reader033.vdocuments.site/reader033/viewer/2022051323/5478b135b4af9fa0158b4609/html5/thumbnails/9.jpg)
© Copyright Entrust, Inc. 2010 9
Application: Remote Access
End User
Remote Access Applications
• Integrates with leading remote access solutions
• Leverages industry standards to streamline deployment
• Supports MS RAS, IP-SEC, & 802.1x clients
![Page 10: ISS SA le presenta los Escenarios para IdentityGuard de Entrust](https://reader033.vdocuments.site/reader033/viewer/2022051323/5478b135b4af9fa0158b4609/html5/thumbnails/10.jpg)
© Copyright Entrust, Inc. 2010 10
10
Application: Enterprise Desktops & Servers
End User
• Integrated 2nd factor authentication
• Easy to use & deploy
• Leverages common security infrastructure
Any user
****
1 6 3
Enterprise Servers
Microsoft WindowsDesktops
Administrators
![Page 11: ISS SA le presenta los Escenarios para IdentityGuard de Entrust](https://reader033.vdocuments.site/reader033/viewer/2022051323/5478b135b4af9fa0158b4609/html5/thumbnails/11.jpg)
© Copyright Entrust, Inc. 2010 11
Application: Extranet Access
End User
Web Authentication Applications
• Range of authenticators
• Inexpensive to deploy
• Easy to use and support
![Page 12: ISS SA le presenta los Escenarios para IdentityGuard de Entrust](https://reader033.vdocuments.site/reader033/viewer/2022051323/5478b135b4af9fa0158b4609/html5/thumbnails/12.jpg)
© Copyright Entrust, Inc. 2010 12
Easily Extends across Enterprise Applications
• Extranet (incl. MS OWA & leading Web SSO vendors)• Microsoft Windows Desktops • Remote Access: Leading IP-SEC & SSL VPNs, RAS, 802.1x, Citrix
AnyUser
******
![Page 13: ISS SA le presenta los Escenarios para IdentityGuard de Entrust](https://reader033.vdocuments.site/reader033/viewer/2022051323/5478b135b4af9fa0158b4609/html5/thumbnails/13.jpg)
© Copyright Entrust, Inc. 2010 13
IdentityGuard 2nd Factor Protection
Remote Access
Enterprise ServersMicrosoft Desktops
Extranet Access
![Page 14: ISS SA le presenta los Escenarios para IdentityGuard de Entrust](https://reader033.vdocuments.site/reader033/viewer/2022051323/5478b135b4af9fa0158b4609/html5/thumbnails/14.jpg)
© Copyright Entrust, Inc. 2010 14
Integrating IdentityGuard
Remote Access Applications
Microsoft Windows Servers
End User
Web Authentication Applications
Enterprise Applications
& Data
Repository
![Page 15: ISS SA le presenta los Escenarios para IdentityGuard de Entrust](https://reader033.vdocuments.site/reader033/viewer/2022051323/5478b135b4af9fa0158b4609/html5/thumbnails/15.jpg)
© Copyright Entrust, Inc. 2010 15
Integrated with Leading Technology Partners
Applications
Application / Infrastructure
Remote Access
Platform
![Page 16: ISS SA le presenta los Escenarios para IdentityGuard de Entrust](https://reader033.vdocuments.site/reader033/viewer/2022051323/5478b135b4af9fa0158b4609/html5/thumbnails/16.jpg)
© Copyright Entrust, Inc. 2010 16
SSL VPN: Juniper
![Page 17: ISS SA le presenta los Escenarios para IdentityGuard de Entrust](https://reader033.vdocuments.site/reader033/viewer/2022051323/5478b135b4af9fa0158b4609/html5/thumbnails/17.jpg)
© Copyright Entrust, Inc. 2010 17
Web Application Integration
Customer Environment
Existing Authentication/
Sign-on Application
SSL
SOAP
• WSDL Interface for J2EE & .NET applicactions
• Included Java bindings• Included ISAPI filter for IIS/ISA
![Page 18: ISS SA le presenta los Escenarios para IdentityGuard de Entrust](https://reader033.vdocuments.site/reader033/viewer/2022051323/5478b135b4af9fa0158b4609/html5/thumbnails/18.jpg)
© Copyright Entrust, Inc. 2010 18
Microsoft Desktop & Server Integration
Existing Active Directory
Enterprise Applications &
Network Resources
• Small Client for Windows desktops (GINA Chain)
• Existing AD Deployment (single or multi-domain)
• Configurable support for MS RAS, IP-SEC, and 802.1x clients built-in
![Page 19: ISS SA le presenta los Escenarios para IdentityGuard de Entrust](https://reader033.vdocuments.site/reader033/viewer/2022051323/5478b135b4af9fa0158b4609/html5/thumbnails/19.jpg)
© Copyright Entrust, Inc. 2010 19
Remote Access Integration
Existing Remote Access Gateway(IP-SEC or SSL)
Radius
Directory UN/PW auth with Active
Directory or LDAP
• IP-SEC or SSL Gateways• Configuration-only integration!
![Page 20: ISS SA le presenta los Escenarios para IdentityGuard de Entrust](https://reader033.vdocuments.site/reader033/viewer/2022051323/5478b135b4af9fa0158b4609/html5/thumbnails/20.jpg)
© Copyright Entrust, Inc. 2010 20
Remote Access Authentication Flow
VPN Client or
Web Browser
Remote Access Gateway
1.User enters authentication credentials
2. User credentials sent to IdentityGuard
4. IdentityGuard challenge requested & presented
5. IdentityGuard response sent to IG server
6. IdentityGuard server returns accept/reject to VPN Client
Repository
7.Success allows user entry
3. User credentials validated against directory
![Page 21: ISS SA le presenta los Escenarios para IdentityGuard de Entrust](https://reader033.vdocuments.site/reader033/viewer/2022051323/5478b135b4af9fa0158b4609/html5/thumbnails/21.jpg)
© Copyright Entrust, Inc. 2010 21
Repository Integration
• Leverages existing user entries
• Adds attributes to object classes for LDAP or independent table for RBDMS
• Read and Write operations required for some authentication options
DirectoryDatabase
JNDI
SSL
![Page 22: ISS SA le presenta los Escenarios para IdentityGuard de Entrust](https://reader033.vdocuments.site/reader033/viewer/2022051323/5478b135b4af9fa0158b4609/html5/thumbnails/22.jpg)
Thank you!