Protect Everything: Networks, Applications and Cloud Services Tokens & Users Cloud Applications Private Networks Corporate Network API LDAP / Active Directory SAML RADIUS Corporate Network LDAP / Active Directory Agent Cloud Services SAML SAML Corporate Network LDAP / Active Directory Application Hosting Corporate Network Online Storage Administrator LDAP / Active Directory Disaster Recovery 1
Core Components Overview Ready to go international cloud-based infrastructure Multi-tenant capability Uses existing access devices Browser based portal access Multi-tier management Extensive feature set Automated deployments Rapid integration Detailed reporting Administrator Subscriber Companies Access Device Administrator Access Device Service Provider User Authentication Tokens & Users SafeNet Confidential and Proprietary 2
Deploy Service in Minutes Subscriber Company Administrator 3 2 Access Device Applications Active Directory 4 5 Step Step Step 1 2 3 Create Service Provider Create Customer Customer Administrator Step 4 Configure Access Device Step 5 Link Active Directory Step 6 Assign MP Tokens Step 7 Distribute hard tokens 6 7 Service Provider Tokens & Users 1 SafeNet Confidential and Proprietary 3
Service Provider Model Support for unlimited levels Allows centralised procurement, control and policies but delegated administration and localisation within customers business units or departments Supports multiple local and central user directories (eg ADs) Supports central and local authentication points (VPNs, Apps etc) Organisations lower in the hierarchy can inherit policies and settings Only view one level down Almost infinite flexibility in what is controlled centrally or devolved Service Provider Reseller Customer 1 Customer 2 Customer 3 Region 1 Region 2
Multi-Tier, Multi-Tenant Multi-tenant architecture Scales to thousands of companies Unlimited numbers of users per company Manage multiple organizations from one centralized interface Unlimited numbers of companies Supports multiple domains Secure Only view one level down Delegated management for lower tiers Deliver enhanced service wrappers Great for multi-region networks Inherit capabilities to lower level SMS / smtp gateways Branding Delegated Service Provider Managed Subscriber Subscriber A Virtual Service Provider Subscriber B Enterprise Subscriber Region 1 Region 2 Region 3 5
SafeNet Authentication Service Architecture SafeNet Authentication Service SafeNet Authentication Service User Repository Portals Service Provider Subscriber North America DataCenter EMEA DataCenter Token Repository Agents Engines LDAP Synch Authentication SMS via HTTP(S) Email via SMTP Internet SMS Service Provider (Subscriber or SP selected) User Self-Service Migration Provisioning Self-Enrolment Solutions Reporting/Alerts SMS message Admin Reports & Alerts End User requests Radius Request Radius Request SAML Request Agent Tokens User Repository Agents Access Devices Administrator Users SafeNet Confidential and Proprietary 6
Automation LDAP Changes Automatic updates of LDAP changes User Changes Directory Server IAS/NPS Server LDAP Agent Access Device or Application Group LDAP Rules Users Self Enrollment 7
Automation LDAP Changes Corporate Network LDAP / Active Directory / User Source Corporate Network LDAP / Active Directory / User Source Corporate Network User Directory Sources LDAP / Active Directory / User Source 8
Multiple Business Unit entities, Groups & Containers Realms enable common access points Realms allow a common access point to be used by a number of organizations Often used for common corporate access points that are shared between subsidiaries Users - Sales Users - Operations Sales 500 users, 600 tokens Operations 100 users, 100 tokens Users R&D R&D 700 users, 700 tokens 9
Multi-Tier, Multi-Tenant Realms enable common access points Realms allow a common access point to be used by a number of organizations Often used for common corporate access points that are shared between subsidiaries Users - Stentor Users - ACME Stentor 500 users, 600 tokens ACME 2000 users, 2000 tokens Users B&O B&O 700 users, 700 tokens 10
Public Cloud and Private Cloud Solution 20,000 Users Your Enterprise 20,000 Users Your Enterprise 11
Service Delivery Platform - Pure Cloud 1000 s of Customers Your Partners and Suppliers 1000 s of Internal Users Your Enterprise 1000 s of Subscribers Your Customers 12
Service Delivery Platform - Private Cloud 1000 s of Customers Your Partners and Suppliers 1000 s of Internal Users Your Enterprise 1000 s of Subscribers Your Customers 13
SAML Enhancements Single Sign-on Authentication at one allowed SAML site access to all allowed sites Logoff at one allowed site, logged off at all allowed sites SAML Assertion bill@gmail.com SAML Assertion bill.laham@safenet-inc.com UserID: Bill Password: OTP SAML Assertion bill 14