Analytics
1/9/2013
03:48 PM
Dark Reading
Dark Reading
Products and Releases
Connect Directly
RSS
E-Mail
50%
50%
Repost This

Aveksa Adds Authentication And Single Sign-On To Cloud-Based Identity And Access Management Platform

MyAccessLive SSO now securely connects users to all on-premise and cloud-based Web applications

Waltham, Mass.--January 7, 2013--Aveksa today announced new Single Sign-On (SSO) capabilities for MyAccessLive, Aveksa's Cloud-based Identity and Access Management offering.

With the new MyAccessLive SSO capabilities, the Aveksa cloud platform now securely connects users to all on-premise and cloud-based web applications. It includes a wide range of sign-on options including multi-factor authentication and desktop SSO, and leverages a standards-based framework with pre-built support for thousands of applications. It also includes mobile device support for improved security and accessibility. With this offering, Aveksa uniquely brings a holistic, business-driven approach to SSO, delivering easy application and user on-boarding for IT, while providing simple "one click" access for line-of-business users. Key elements of the new SSO capabilities include:

· Pre-built SSO connectors for thousands of SaaS applications

· A simple, standards-based framework for application onboarding

· "One click" access to applications through desktop and mobile portals

· Easy directory integration for rapid deployment

· Support for policy-based strong authentication, including multi-factor and one-time password

· Desktop SSO for transparent user access to applications

· Support for on-premise web applications

These new capabilities are part of Aveksa's MyAccessLive, a cloud-based offering that provides organizations an easy way to quickly obtain visibility of who has access to what IT resources, and ensure that access is appropriate, based on each user's role and job responsibilities. With these new integrated Single Sign-On capabilities, Aveksa now offers the industry's most complete IAM platform, comprising Identity and Access Governance, Provisioning and SSO Authentication.

With this complete, integrated platform, organizations can quickly, easily and securely:

· Establish business processes which control users' access to all applications, whether on-premise or cloud-based

· Ensure users have only appropriate access to applications, based on a complete picture of users' roles, responsibilities and job functions

· Enable Single Sign-On to cloud and on-premise applications through a unified platform

"Today's enterprises need a comprehensive IAM solution, with integrated governance, provisioning and authentication," said Deepak Taneja, Chief Technology Officer, Aveksa. "With our new SSO capabilities, companies can now meet this need, regardless of whether their IAM systems are deployed on-premise or in the cloud. By delivering the industry's most complete Identity and Access Management solution, Aveksa is enabling enterprises to gain full visibility and control of user access, across all applications."

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Latest Comment: LOL.
Current Issue
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2011-3154
Published: 2014-04-17
DistUpgrade/DistUpgradeViewKDE.py in Update Manager before 1:0.87.31.1, 1:0.134.x before 1:0.134.11.1, 1:0.142.x before 1:0.142.23.1, 1:0.150.x before 1:0.150.5.1, and 1:0.152.x before 1:0.152.25.5 does not properly create temporary files, which allows local users to obtain the XAUTHORITY file conte...

CVE-2013-2143
Published: 2014-04-17
The users controller in Katello 1.5.0-14 and earlier, and Red Hat Satellite, does not check authorization for the update_roles action, which allows remote authenticated users to gain privileges by setting a user account to an administrator account.

CVE-2014-0036
Published: 2014-04-17
The rbovirt gem before 0.0.24 for Ruby uses the rest-client gem with SSL verification disabled, which allows remote attackers to conduct man-in-the-middle attacks via unspecified vectors.

CVE-2014-0054
Published: 2014-04-17
The Jaxb2RootElementHttpMessageConverter in Spring MVC in Spring Framework before 3.2.8 and 4.0.0 before 4.0.2 does not disable external entity resolution, which allows remote attackers to read arbitrary files, cause a denial of service, and conduct CSRF attacks via crafted XML, aka an XML External ...

CVE-2014-0071
Published: 2014-04-17
PackStack in Red Hat OpenStack 4.0 does not enforce the default security groups when deployed to Neutron, which allows remote attackers to bypass intended access restrictions and make unauthorized connections.

Best of the Web