Key Features
- Offers pre-built options to implement SSO to web-based applications including those built on Apache HTTP, Tomcat, Microsoft IIS, Oracle/BEA, WebSphere, and Glassfish
- Integrates with existing authentication systems such as Microsoft Active Directory™ and LDAP, allowing the user to have a single login identifier that works across the enterprise.
- The TridentHE SSO Appliance is built on the foundation of the higher education targeted TridentHE Identity Suite; an open standards, proven, and cost effective solution
- The TridentHE SSO appliance is scalable to hundreds of web applications, both internal and external to the organization’s network
- SSO via Reverse Proxy, Integration Connectors, SAML, OpenID, and OAuth
Target Systems
- ERP: SunGard Banner, PeopleSoft, Datatel, Jenzabar, Kuali
- Portal: uPortal, Luminis, Liferay, MyCampus, SharePoint, PeopleSoft
- LMS: Blackboard, Moodle, Sakai
- Cloud/SaaS: Google Apps for Edu, Microsoft Live@edu, Microsoft BPOS
Description
Aegis TridentHE Single Sign-on (SSO) Appliance is an integrated hardware and software solution for single sign-on that is designed for rapid deployment, low risk, and future scalability. The Appliance requires minimal configuration to integrate and provides SSO to common web applications found on campuses such as Learning Management Systems, Webmail, Portals, Student Information Systems, and Human Resource Systems. The appliance leverages existing credentials by integrating with Microsoft Active Directory or other LDAP directories for authentication and authorization. The user can then access all of the targeted applications with a single sign-on.
The SSO Appliance is built upon TridentHE Access Manager. TridentHE Access Manager is a cost-effective, proven, higher education focused, open standards solution providing SSO, Federated SSO, Authorization and XACML support.
With SSO in place, end users use and maintain a single credential (userid/password) in the existing campus directory which is used to access all SSO enabled web applications. This eliminates the difficulties associated with password synchronization such as varying password policies, password expirations, and reset mechanisms. A single, well protected password store is less risky than synchronizing a user’s password to 15 or more target applications – each with their own potential vulnerabilities.
The SSO Appliance provides a central authorization system for applications, allowing policies and filters to be created and managed in a single location. The appliance leverages existing groups and attributes in your campus directory to apply policies to the appropriate users.
SSO Challenges
Many users struggle with an increasing number of usernames and passwords to access internal and external applications. Surveys show that 36% of users have six to 15 passwords, and another 18% have more than 15. All of these usernames and passwords lead to increased help desk expense, lost user productivity, irritated users, and security vulnerabilities. The Aegis TridentHE SSO Appliance reduces risk, improves user experience, and increases productivity while decreasing the implementation cost traditionally associated with deploying SSO solutions from ”scratch”. The TridentHE SSO appliance leverages best practices and knowledge gained from working with successful custom deployments at numerous higher education clients with an “out of the box” solution for SSO.
Summary
Aegis TridentHE SSO Appliance offers the solution organizations need to quickly implement SSO while providing a platform that scales to handle future IAM needs such as provisioning, password management, and compliance.
E-mail: info@aegisusa.net