|
Cognizance Identity and Access Management
Cognizance Identity and Access Management (IAM) is a new generation security solution designed from the ground up on the concept of the unified user identity. A consistent user identity, regardless of how the user accesses the network and applications, significantly reduces administrative complexity and increases productivity. In a single product, Cognizance IAM consolidates most important inter-dependent administrative functions including user management, identity provisioning, access policy and application management. In addition to increasing management efficiency, this combination of functionality allows centralization of the security architecture and consistency of the enterprise security model.
 Cognizance Identity and Roles
Cognizance IAM dynamically generates user identity at the moment when the user logs in. The user identity may include segments of user profile retrieved from various enterprise data sources, user access privileges and configuration data for the integrated security applications. Access privileges are implemented through the use of a Role-Based Authorization and Access Control (RBAC) paradigm. The benefits of RBAC are that it reduces the number of relationships, reduces changes and duplication of access control information and further reduces management costs. Cognizance IAM supports multiple roles per user, role hierarchy and inheritance.
Strong multi-factor authentication
Cognizance IAM comes out of the box with full support for multifactor user authentication, including any combination of dynamic or single-use passwords, smart cards, USB tokens, certificates, and biometrics. A user can have multiple alternative authentication methods.
Security Policy and Authorization
Cognizance IAM supports both static and dynamic polices. Static policies include authentication methods, time, date, IP address and access protocol. The dynamic or active policy elements allow automatic policy and role generation according to business rules defined by the administrator. The system instantly processes user properties such as job description, unit, or location, automatically creating the corresponding access rights and roles.
Cognizance Administration Center
 Cognizance Administration Center integrates and standardizes existing security systems and provides complete user identity and access privileges management through a flexible and intuitive user interface. A Cognizance administrator can also configure built-in applications, register new single sign-on applications and manage users and user profiles in multiple enterprise repositories. Administrative efficiency increases because a single Web-enabled Administration Center replaces multiple custom administrative tools.
User self-service
Cognizance IAM provides a standard tool, Cognizance User Administration, for all user self-service tasks. A user can perform complete life cycle management of his identity and built-in security applications within the parameters permitted by centralized self-service policies. User self-service significantly reduces administrative workload by making the user responsible for maintenance of his identity. Supported self-service functionality includes user's profile maintenance, enrolling/changing credentials, registering new SSO applications, issuing and installing new certificates, and adding new network/VPN accounts.
Flexible and scalable enterprise architecture
Cognizance IAM was developed as a flexible expandable framework. Cognizance IAM SDK lets the customer easily add support for new data repositories, authentication methods, custom policies, and applications.
Built-in security services and applications
|
