Regulatory compliance, information system access control and user experience: all are motives for the elimination of passwords in the company and the development of Strong – Multi-factor- Adaptive Authentication.
However, these methods use different technologies (chip cards, multi-service cards, contactless badges, USB keys, smartphone, etc.), and there are often many different methods within your organisation. How can they be associated with the information system security policy without making the daily management tasks more difficult for administrators, and without adding further constraints for users? How can the means required for physical and logical access held by users be pooled? How can the complexity of the IS be hidden, while still guaranteeing users protection and management of their digital identity?
Integrated into our IAM platform, the Sign&go CMS solution allows centralised management of the life cycle of all your authentication devices and multi-service cards, as well as linking them with users, digital identities and the information system.
Managing authentication devices,
a genuine headache for organisations,
but a strong challenge for security
and the user experience
In order to retain control over authentication methods, the challenge is to deploy reliable and proven solutions which are interoperable with various technologies in the IS, technologies which are often complex and heterogeneous. This is the case for example for digital certificates, generated by local or hosted key management infrastructures (PKI), that would need to be registered in devices ranging from chip cards to mobile terminals such as smartphones and tablets.
The aim is then to hide the complexity of these IS infrastructures, in particular PKIs and identity reference bases: the idea is to offer all users, including those who are not computer experts, simple processes and ergonomic interfaces for requesting and retrieving their customised physical devices and their digital certificates.
The Sign&go CMS solution has therefore been designed to simplify the deployment and daily management of a base comprising all kinds of authentication devices. You therefore have a single, centralised CMS (Card Management System) solution, allowing you to manage devices providing physical access to your premises as well as devices relating to logical access to your information system.
Simplify authentication interactions
between actors and users
With Sign&go CMS, it is easy to manage all your authentication devices and control their deployment :
Easy deployment of all your authentication devices
Sign&go CMS allows you to manage all types of devices and control their deployment for users:
- Means of authentication on workstations and applications of the IS: chip cards, FIDO2 token, digital certificate
- Professional business cards for employees of a local authority or healthcare professional in a hospital, etc.
- All-purpose cards which combine all services offered to its inhabitants by a local authority on a single device: transport, nurseries, swimming pools, libraries, etc.
- Badges controlling access to the premises of a company
- Smartphones and tablets intended for mobile use
Management of the life cycle
of authentication devices and digital certificates
Sign&go CMS provides a set of preconfigured, ready to use scenarios, which can also be customised, such as:
- A self-service or delegated request for a certificate
- A customised device handed over in person
- Revocation and replacement of a forgotten, lost or stolen device
- Bulk processing,
The Sign&go CMS scenarios are configured in the solution administration web interfaces, and can involve all actors – both business and technical – in the device distribution chain, via approval processes (notification, validations, operations, etc.)
Simpler interactions with the IS
and complete traceability of operations
Sign&go CMS lies at the crossroads between users, their authentication devices and the information system.
The solution provides administration interfaces to CMS operators and actors, and ergonomic self-service interfaces for users and wearers of physical devices.
It works together with all technical components of the IS related to the concept of authentication:
- Key management infrastructures (PKI)
- Identity and authorisation management solutions (IAM)
- Access management and Single Sign-On (SSO) solutions
- Databases and company directories
Sign&go CMS also provides numerous audit reports relating to the life cycle of authentication devices, as well as to all events performed by the solution, along with customised statistics and reports.
Centralised management of the complete range of devices used: USB keys, chip cards, multi-service cards, smartphones, etc.
Interoperability with the PKI infrastructures and IAM solutions of the IS.
POWER AND SIMPLICITY
Sign&go CMS, a powerful yet simple solution, is a scalable base which can make it easier for personnel who are not necessarily computer experts to deploy physical devices.
Graphics customisation workshop for physical devices: print masks, taking of pictures, management of image rights, etc.
Self-service management by users through ready-to-use scenarios and user-friendly web interfaces.
Audit and statistics on operations performed by wearers of authentication devices for simplified and complete control by the CMS managers.