Soffid ESSO, as any other enterprise single sign on, needs to store the password in a way that can be used by applications, and this requirement implies that password should be stored in either clear text or reversible encryption algorithms, making them vulnerable to insider attacks. Continue reading →
After five months of hard work, the new 1.6 version is ready to be tested. It contains a bunch of new and relevant features, improving both identity governance and technical features. Continue reading →
Soffid is able to retrieve information from human resource information systems in order to assign employee entitlements. In the following screencast, a full data acquisition and entilement assignment demo can be seen. Continue reading →
Password stress is a common problem on small and big copmanies. The advent of cloud applications has increased the number of user names and passwords that an average user has to manage.
Soffid provides a complete single sign on mechanism, able to get rid authentication dialogs in a easy, efficient and secure fashion. Continue reading →
To secure mobile device access is an important challenge, due to potential security risks that a device lost represents. Soffid can reduce security risks while improving user experience using digital certificates. The advantages that a digital certificate represents are clear from technical and functional point of view. Continue reading →
Soffid can improve legacy system protection, by allowing complex password policies to be defined. Inside user and password domains screen, the administrators can define the password policy to apply to any system.
Thus, a system set can be configured to share its passwords. This system set use to include active directory among others. Another system sets can be defined so Soffid will timely generate random passwords for them.
Users can be allowed to query or change their password on any system from within self service portal. Additionally, single sign on module is able to inject proper credentials for any system, so that the user does not even need to know each legacy system password.