Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
Most likely, your company’s critical business systems and data are scattered across
resources and applications—from cloud and on-premises to hybrid and mobile
environments. Wherever these systems are located, however, IT is ultimately responsible
for keeping the data safe, ensuring that only legitimate users gain access.
To support a wide range of environments and users both on and off the network, you need
an innovative, comprehensive and flexible authentication solution that offers secure,
convenient access—and is easy to use and integrate regardless of your preferred
environment.
This technical brief describes how XYZ SecurID® Access works, including key components
and integration with both cloud and on-premises applications.
XYZ SecurID Access provides the benefits and functionality of Identity Assurance-as-a-
Service (IAaaS) and XYZ Authentication Manager combined into one product. This
integration enables new capabilities for existing XYZ Authentication Manager Enterprise and
Premium Edition customers. XYZ SecurID Access supports:
XYZ Authentication Manager provides the following choices for strong authentication:
XYZ SecurID Access protects access using two-factor authentication with hardware-
and software-based tokens.
On-demand authentication protects access using two-factor authentication, by
sending authentication credentials to users upon request through SMS text
messaging or e-mail.
Risk-based authentication protects access by assessing user behavior, matching the
device used to authenticate to assess the risk level of an authentication attempt.
You can integrate IAaaS and XYZ Authentication Manager in the following ways:
Use XYZ SecurID tokens as an authentication method for SaaS and on-premises web
applications. This requires XYZ Authentication Manager 8.0 or later.
Authenticate with either XYZ SecurID tokens or XYZ SecurID Authenticate
Tokencodes from all access points controlled by XYZ Authentication Manager,
including agents, XYZ Ready partner implementations, and RADIUS clients. XYZ
Authentication Manager sends XYZ SecurID Authenticate Tokencodes directly to
IAaaS for authentication. This requires XYZ Authentication Manager 8.2 or later.
The identity router
The identity router is an on-premises virtual appliance that communicates with IAaaS and
enforces authentication and access for users of protected resources. An identity router
includes the following services:
XYZ SecurID Access provides the XYZ SecurID Authentication API, a REST-based
programming interface that allows you to develop clients that process multifactor,
multistep authentications through XYZ Authentication Manager and IAaaS. XYZ now
provides a univeXYZl REST API to integrate with any programming language.
The Authentication API supports XYZ Authentication Manager 8.2 Service Pack 1 or later.
End users want the flexibility to choose from multiple platforms, and XYZ SecurID Access
can accommodate them. In addition to supported iOS and Android platforms, customers
can use any Windows 10 device—PC, tablet or phone—to authenticate with advanced
mobile authentication.
Behavior-based
Device Confidence
Network
Deny
Time
App
XYZ SecurID Access continues to provide the most advanced, trusted, resilient and flexible
forms of strong authentication on the market today. Our solutions are trusted by more than
25,000 customers and protect more than 60 million end users worldwide. XYZ continues to
invest in and evolve the XYZ SecurID Access solution to help organizations provide secure
and convenient access across on-premises, cloud and mobile environments.
XYZ can serve as your strategic authentication advisor, working with you to incorporate
best-of-breed, third-party and XYZ solutions to support a futureproof security solution—one
that enables secure and convenient access for any user, from anywhere, to anything.
LEARN MORE
XYZ SecurID Access uses identity assurance, an intelligent, proactive and continuous
approach to authentication. It provides a context- and risk-based approach that first
assesses the risk associated with the access request to determine how much assurance is
actually required. When authentication is required, XYZ SecurID Access also supports the
broadest range of best-of-breed multi-factor authentication (MFA) methods, including push
notification, biometrics (Eyeprint ID and fingerprint), one-time password (OTP), SMS, FIDO-
certified standards, and traditional hardware and software tokens. With a single vendor,
you can extend access protection to traditional, web, mobile and SaaS applications; gain
centralized visibility into identity and access needs; and consistently enforce policy across all
environments.