Access Management

More and more companies are moving far beyond providing simple Web-based access to enterprise applications and services. They’re creating competitive advantages by partnering with other companies in federated relationships, and by building and delivering new applications and services using service oriented architecture (SOA) and Web services. It’s critical for them to find effective ways to protect and secure access to those applications and services. Managing authentication and authorization for Web, Java™ technology, federated, and Web services environments usually requires several different solutions. But this approach is costly and inefficient, making it difficult to achieve complete security without overwhelming developers, administrators, and users with complexity. What’s needed instead is a single integrated solution to authenticate and authorize all user requests for secure applications and services – regardless of where the requests come from, or where the applications and services reside.

Crescent Access Management Solution extends security for Web and Java applications to federated environments and Web services security. This consolidated approach simplifies the security environment by reusing authentication, access policies, and auditing across all critical applications and services.

• Providing single sign-on (SSO) capabilities to enterprise applications and services. Access Manager simplifies the user experience and strengthens security by reducing the number of times users must log onto protected resources.
• Establishing federated SSO with partners. Access Manager gives users seamless access to third-party applications and services through simple, standards-based mechanisms for creating and sharing security assertions with partners.
• Securing service-to-service interactions in Web services environments. Access Manager protects valuable Web Services by adding identity-based security tokens to every outgoing message, as well as by authenticating and evaluating incoming messages.

In each case, Access Manager simplifies how users gain access to applications, providing SSO capabilities to Web applications, portals, Windows desktop environments, Java applications, and loosely coupled Web services based on a centralized set of authentication mechanisms and secure access policies. Whether users are interacting directly with an application through a browser or accessing remote Web services through a portal, Access Manager ensures that a coherent, consistent identity security context is maintained throughout the environment.

The highlights of the solutions are:

• Identity-based solution for managing authentication and authorization in Web, Java™, federated, and Web services environments.
• Seamless integration with existing infrastructures including Enterprise SSO (ESSO)
• Superior integration with Java platform
• Interoperability in heterogeneous environments
• Single Web archive (WAR) file deployment capabilities for easy rollout
• Simple, Web-based management console
• Maximum scalability to ensure long-term value
• Ability to leverage and reuse services across business units, partners, and service offerings