How Soffid protects your passwords

Soffid ESSO, as any other enterprise single sign on, needs to store the password in a way that can be used by applications, and this requirement implies that password should be stored in either clear text or reversible encryption algorithms, making them vulnerable to insider attacks.
Continue reading

1.6 version is coming

After five months of hard work, the new 1.6 version is ready to be tested. It contains a bunch of new and relevant features, improving both identity governance and technical features.
Continue reading

Track privileged accounts usage

With Soffid, you can manage four types of accounts:

  • Unmanaged accounts. Theese accounts will be ignored by Soffid synchronization engine. Their primary goal is to allow a smooth transition without having to bother about some accounts until later.
  • Continue reading

How to remove unnecessary password dialogs

Password stress is a common problem on small and big copmanies. The advent of cloud applications has increased the number of user names and passwords that an average user has to manage.
Soffid provides a complete single sign on mechanism, able to get rid authentication dialogs in a easy, efficient and secure fashion.
Continue reading

How to secure mobile device access

To secure mobile device access is an important challenge, due to potential security risks that a device lost represents. Soffid can reduce security risks while improving user experience using digital certificates. The advantages that a digital certificate represents are clear from technical and functional point of view.
Continue reading

Apply password policies to legacy systems

Soffid can improve legacy system protection, by allowing complex password policies to be defined. Inside user and password domains screen, the administrators can define the password policy to apply to any system.


Thus, a system set can be configured to share its passwords. This system set use to include active directory among others. Another system sets can be defined so Soffid will timely generate random passwords for them.

Users can be allowed to query or change their password on any system from within self service portal. Additionally, single sign on module is able to inject proper credentials for any system, so that the user does not even need to know each legacy system password.