Analytics
1/9/2013
03:48 PM
Dark Reading
Dark Reading
Products and Releases
Connect Directly
RSS
E-Mail
50%
50%
Repost This

Aveksa Adds Authentication And Single Sign-On To Cloud-Based Identity And Access Management Platform

MyAccessLive SSO now securely connects users to all on-premise and cloud-based Web applications

Waltham, Mass.--January 7, 2013--Aveksa today announced new Single Sign-On (SSO) capabilities for MyAccessLive, Aveksa's Cloud-based Identity and Access Management offering.

With the new MyAccessLive SSO capabilities, the Aveksa cloud platform now securely connects users to all on-premise and cloud-based web applications. It includes a wide range of sign-on options including multi-factor authentication and desktop SSO, and leverages a standards-based framework with pre-built support for thousands of applications. It also includes mobile device support for improved security and accessibility. With this offering, Aveksa uniquely brings a holistic, business-driven approach to SSO, delivering easy application and user on-boarding for IT, while providing simple "one click" access for line-of-business users. Key elements of the new SSO capabilities include:

· Pre-built SSO connectors for thousands of SaaS applications

· A simple, standards-based framework for application onboarding

· "One click" access to applications through desktop and mobile portals

· Easy directory integration for rapid deployment

· Support for policy-based strong authentication, including multi-factor and one-time password

· Desktop SSO for transparent user access to applications

· Support for on-premise web applications

These new capabilities are part of Aveksa's MyAccessLive, a cloud-based offering that provides organizations an easy way to quickly obtain visibility of who has access to what IT resources, and ensure that access is appropriate, based on each user's role and job responsibilities. With these new integrated Single Sign-On capabilities, Aveksa now offers the industry's most complete IAM platform, comprising Identity and Access Governance, Provisioning and SSO Authentication.

With this complete, integrated platform, organizations can quickly, easily and securely:

· Establish business processes which control users' access to all applications, whether on-premise or cloud-based

· Ensure users have only appropriate access to applications, based on a complete picture of users' roles, responsibilities and job functions

· Enable Single Sign-On to cloud and on-premise applications through a unified platform

"Today's enterprises need a comprehensive IAM solution, with integrated governance, provisioning and authentication," said Deepak Taneja, Chief Technology Officer, Aveksa. "With our new SSO capabilities, companies can now meet this need, regardless of whether their IAM systems are deployed on-premise or in the cloud. By delivering the industry's most complete Identity and Access Management solution, Aveksa is enabling enterprises to gain full visibility and control of user access, across all applications."

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-2391
Published: 2014-04-24
The password recovery service in Open-Xchange AppSuite before 7.2.2-rev20, 7.4.1 before 7.4.1-rev11, and 7.4.2 before 7.4.2-rev13 makes an improper decision about the sensitivity of a string representing a previously used but currently invalid password, which allows remote attackers to obtain potent...

CVE-2014-2392
Published: 2014-04-24
The E-Mail autoconfiguration feature in Open-Xchange AppSuite before 7.2.2-rev20, 7.4.1 before 7.4.1-rev11, and 7.4.2 before 7.4.2-rev13 places a password in a GET request, which allows remote attackers to obtain sensitive information by reading (1) web-server access logs, (2) web-server Referer log...

CVE-2014-2393
Published: 2014-04-24
Cross-site scripting (XSS) vulnerability in Open-Xchange AppSuite 7.4.1 before 7.4.1-rev11 and 7.4.2 before 7.4.2-rev13 allows remote attackers to inject arbitrary web script or HTML via a Drive filename that is not properly handled during use of the composer to add an e-mail attachment.

CVE-2011-5279
Published: 2014-04-23
CRLF injection vulnerability in the CGI implementation in Microsoft Internet Information Services (IIS) 4.x and 5.x on Windows NT and Windows 2000 allows remote attackers to modify arbitrary uppercase environment variables via a \n (newline) character in an HTTP header.

CVE-2012-0360
Published: 2014-04-23
Memory leak in Cisco IOS before 15.1(1)SY, when IKEv2 debugging is enabled, allows remote attackers to cause a denial of service (memory consumption) via crafted packets, aka Bug ID CSCtn22376.

Best of the Web