Magnaquest

Identity Management Solution

Magnaquest Identity Management Solution takes a lifecycle approach to the management of identity and access control from the beginning of the process. Specifically, identity management handles changes that occur during the lifetime of a user’s account. It has the ability to integrate with pre-existing information sources within the enterprise, such as directories and HR systems. This gives a complete approach to identity management by leveraging existing information in data directories as well as integrating and utilizing HR system to access information about an employee (hiring, promotion, transfer, termination of employment).

• Identity management (user lifecycle management)
• User provisioning
• Password management

Access Management Solution

Magnaquest Access assurance Solution provides centralized policy management for controlling access to resources. Access Manager supports XACML standard for communicating with the Policy Enforcement Points (PEP). This helps organizations to manage the enterprise policies in a centralized manner.

Access Manager authorization service provides evaluation of access permissions against a specific access context. Enforcement components/agents such as MQAssure™ AppShield send user access details to the authorization service. Authorization service in turn evaluates the policies in the database and sends decision back to the enforcement agent which in-turn enforces policy decision.

It provides platform for SSO. It provides access management for corporate web applications and secondly, it provides access management for operating systems at endpoints (desktop, laptop and servers).

• Physical and logical access control
• Secure single sign-on
• Role-based access control

Compliance Management Solution

MQAssure Compliance Manager shall provide open architecture through which specific compliance modules can be plugged in. These compliance modules are provided based on the compliance requirements of organizations.

Features and Benefits

• Platform independent, flexible and scalable architecture (built on JAVA Technologies)
• Effective multi-factor based authentication for accessing the application
• Role-Based Access Control (RBAC) and Rule-based for accessing Application resources
• Digital Signing and Time-stamping of transactions and/or Audit records providing clear legal framework for the conduct of transactions
• Well-defined approach for tight integration of MQ T with Networks and Application resources, and implementation of the same
• Integration with Smart Cards, Biometrics, and PKI technologies, Hardware Security Modules (HSM), Directory Services (LDAP, Active Directory)
• Secure centralized repository of identities and attributes
• Tamper-proof storage of credentials
• Automated provisioning and workflow management
• Support for identity federation
• Role-based access management
• Centralized policy management
• Multifactor authentication of users, devices and applications
• Authorization decision based on role, context and transaction dynamics
• Secure cryptographic key management
• Enterprise wide single sign-on
• Support for trusted time-stamping & PKI
• Access enforcement agents for integrated endpoint security
• Centralized webbased administration interfaces
• Backup and recovery management
• Logs, alerts and centralized audit management

Benefits

• Minimizing identity theft related problems: Securing access to networks and applications by implementing 2/3 factor authentication. Better security for logon credentials.
• Greater protection for sensitive data: Smart cards reduce the threat of unauthorized access by use of stolen credentials.
• Higher level of regulatory compliance: Being able to ensure authenticity and integrity of audit records and enforcing non-repudiation of transactions.
• Lower probability of repudiation of transactions: Coupled with usage of smart card and tokens, digital signatures for signing the transactions provide greater benefits like authenticity, integrity and non-repudiation of transactions.
• Better integration with access management systems: Smart cards also function as key cards to manage physical access, such as, controlled door locks to access a physical site and between sectors within the site. The combination of smart card and key card makes it easy to control the exact level of network and physical access for a user or an administrator, and reduces the fear of security compromise.
• Reduces administrative overhead: Through simplified administration interfaces and consolidated repository of identity information along with automated provisioning. Self-service interfaces reduce help-desk costs and burden on daily administration.
• Improved user efficiency and productivity: Through simple and consistent authentication interfaces enabling Enterprise Single Sign-On (SSO).
• Enable business agility: Reduces new application development.