Analytics
1/9/2013
03:48 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Aveksa Adds Authentication And Single Sign-On To Cloud-Based Identity And Access Management Platform

MyAccessLive SSO now securely connects users to all on-premise and cloud-based Web applications

Waltham, Mass.--January 7, 2013--Aveksa today announced new Single Sign-On (SSO) capabilities for MyAccessLive, Aveksa's Cloud-based Identity and Access Management offering.

With the new MyAccessLive SSO capabilities, the Aveksa cloud platform now securely connects users to all on-premise and cloud-based web applications. It includes a wide range of sign-on options including multi-factor authentication and desktop SSO, and leverages a standards-based framework with pre-built support for thousands of applications. It also includes mobile device support for improved security and accessibility. With this offering, Aveksa uniquely brings a holistic, business-driven approach to SSO, delivering easy application and user on-boarding for IT, while providing simple "one click" access for line-of-business users. Key elements of the new SSO capabilities include:

· Pre-built SSO connectors for thousands of SaaS applications

· A simple, standards-based framework for application onboarding

· "One click" access to applications through desktop and mobile portals

· Easy directory integration for rapid deployment

· Support for policy-based strong authentication, including multi-factor and one-time password

· Desktop SSO for transparent user access to applications

· Support for on-premise web applications

These new capabilities are part of Aveksa's MyAccessLive, a cloud-based offering that provides organizations an easy way to quickly obtain visibility of who has access to what IT resources, and ensure that access is appropriate, based on each user's role and job responsibilities. With these new integrated Single Sign-On capabilities, Aveksa now offers the industry's most complete IAM platform, comprising Identity and Access Governance, Provisioning and SSO Authentication.

With this complete, integrated platform, organizations can quickly, easily and securely:

· Establish business processes which control users' access to all applications, whether on-premise or cloud-based

· Ensure users have only appropriate access to applications, based on a complete picture of users' roles, responsibilities and job functions

· Enable Single Sign-On to cloud and on-premise applications through a unified platform

"Today's enterprises need a comprehensive IAM solution, with integrated governance, provisioning and authentication," said Deepak Taneja, Chief Technology Officer, Aveksa. "With our new SSO capabilities, companies can now meet this need, regardless of whether their IAM systems are deployed on-premise or in the cloud. By delivering the industry's most complete Identity and Access Management solution, Aveksa is enabling enterprises to gain full visibility and control of user access, across all applications."

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Latest Comment: nice post
Current Issue
Flash Poll
Threat Intel Today
Threat Intel Today
The 397 respondents to our new survey buy into using intel to stay ahead of attackers: 85% say threat intelligence plays some role in their IT security strategies, and many of them subscribe to two or more third-party feeds; 10% leverage five or more.
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-1750
Published: 2015-07-01
Open redirect vulnerability in nokia-mapsplaces.php in the Nokia Maps & Places plugin 1.6.6 for WordPress allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the href parameter to page/place.html. NOTE: this was originally reported as cross-sit...

CVE-2014-1836
Published: 2015-07-01
Absolute path traversal vulnerability in htdocs/libraries/image-editor/image-edit.php in ImpressCMS before 1.3.6 allows remote attackers to delete arbitrary files via a full pathname in the image_path parameter in a cancel action.

CVE-2015-0848
Published: 2015-07-01
Heap-based buffer overflow in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted BMP image.

CVE-2015-1330
Published: 2015-07-01
unattended-upgrades before 0.86.1 does not properly authenticate packages when the (1) force-confold or (2) force-confnew dpkg options are enabled in the DPkg::Options::* apt configuration, which allows remote man-in-the-middle attackers to upload and execute arbitrary packages via unspecified vecto...

CVE-2015-1950
Published: 2015-07-01
IBM PowerVC Standard Edition 1.2.2.1 through 1.2.2.2 does not require authentication for access to the Python interpreter with nova credentials, which allows KVM guest OS users to discover certain PowerVC credentials and bypass intended access restrictions via unspecified Python code.

Dark Reading Radio
Archived Dark Reading Radio
Marc Spitler, co-author of the Verizon DBIR will share some of the lesser-known but most intriguing tidbits from the massive report