Identiprise Services Company Support Contact
Ease of Deployment
Architecture Overview
Architecture Overview
Enterprise Edition
Web Edition
  Your Location:   home    identiprise    identiprise faqs    Identiprise Home  
How does SecuredUser, Enterprise Edition coexist with my current Web-based SSO solution?

Client server security, an important feature of Identiprise SecuredUser, Enterprise Edition, can co-exist with an existing Web-based SSO solution. In such deployments, the SmartClient is configured to interact directly with the existing SSO product.

We have roaming users. How does SecuredUser handle remote authentication and user profiles? SmartClients have virtual private network capabilities built in. Remote users can use these when roaming. Alternatively, your VPN server can authenticate to SecuredUser using LDAP or Radius protocols.

Smart Plug-ins support access to Web-based services.
We have multiple directories, each with their own identity information. Can SecuredUser help us aggregate these? Yes, the Virtual Directory enables the SecuredUser Server to logically aggregate identities from any number of directories or databases. It can also manage identical users that have different identities in those directories.

Can SecuredUser synchronize the information in its Virtual Directory? Actually, the Virtual Directory does not replicate any information that is stored in target directories, so synchronization is not required.

Other factors may require synchronization across target directories. In this case directory synchronization products such as Dir-XML or MIIS can be used in conjunction with the SecuredUser provisioning facility to address directory synchronization requirements.
Does SecuredUser have transactional rules to enable authorization decisions based on dynamic look-ups in databases and LDAP directories ? Absolutely, they are part of the dynamic entitlements in SecuredUser, which allow flexible access to databases and LDAP directories through the Virtual Directory. Rules are not limited to only implementing business logic, but rather can perform user registration and changes to entitlements, thanks to a standard powerful scripting language.
Does SecuredUser provide dynamic transactional authorization for multipartner Web services? How? SecuredUser provides standards-based Web Services interfaces that provide access to all SecuredUser functions including authentication and dynamic authorization.

The SecuredUser rules engine supports state-less, state-full, and transactional models for carrying out authorization decisions.
Does SecuredUser have APIs that allow developers to bundle authentication and authorization requests from legacy and new applications? Yes, our APIs are supported as a C-language library on almost any POSIX-compliant platform. They are also available using Visual Basic via an Active-X adapter, and are .NET compliant.

That said, in many cases, the use of APIs is not required in a SecuredUser implementation, since PSM, SmartClient, and Smart Plug-in technologies eliminate the need to do application re-coding.