Feitian eJava Token
vSEC:CMS is fully functional with Feitian eJava Token and streamlines all aspects of securely managing these credentials by connecting to enterprise directories, certificate authorities, physical access control systems, email servers, log servers, PIN mailers... full list in bottom of this page.
vSEC:CMS Overview
- Fast implementation that takes minutes, rather than weeks or months
- Intuitive user interface that improves operational efficiency
- No hidden costs and low total cost of ownership
- Consistently high security level without exception
- Large scale capabilities, available from day one
vSEC:CMS Connectors (see figure above)
- 1. Smart card printer for batch operations
- 2. User directory for looking up users
- 3. File and database servers
- 4. Secure transport of PIN codes
- 5. Event & log management
- 6. User photo capture
- 7. Certificate/PKI services
- 8. Physical access control systems
- 9. Hardware security module
- 10. Secondary/out-of-band communication
- 11. Key archival & key recovery
- 12. Credential provider -login screen interface
- 13. Remote security device management
- 14. User self-service application
- 15. Physical & virtual smart cards/tokens
- 16. Administrative operator console
This section shows what user directories, certificate authorities (CAs), Hardware Security Modules (HSMs) and other internal and external software and hardware that vSEC:CMS can work with to provide the ideal identity and access management system for our customers.
Technical Specifications |
|
Operating Systems | Windows 7 |
Windows 8 | |
Windows 10 | |
Windows Server 2008/R2 | |
Windows Server 2012/R2 | |
Windows Server 2016 | |
Smart Card Readers | All smart card readers compliant with PC/SC and certified by the Microsoft WHQL |
Security Features | Secure key storage |
Secure backup and synchronization of databases | |
Disaster recovery for stolen/lost tokens | |
Encrypted audit log | |
Granular access control | |
Approval work flows | |
Connects logical and physical access control | |
Key archival and key restore processes | |
Support for fingerprint template management | |
Smart card stock/inventory management | |
Performance | The system is tested and is functional with 300,000 registered user smart cards and 100 parallel operators interacting with the system |
User Directory | LDAP V2/V3 |
IBM LDAP | |
OpenLDAP | |
Microsoft Active Directory | |
Microsoft SQL Server Using LDAP to SQL gateway | |
Flexible Directory-PKI connector using alternative IDs | |
Certification Authority | Microsoft Certificate Authority from 2008 R2 and above |
Primekey EJBCA 4.0.12 Community and 6.3.2.3 Enterprise | |
Entrust version 8.1 | |
Symantec version 8.15 | |
Symantec MPKI 7.5 (for Kuwait Government PKI, PACI) | |
Nexus Certificate Manager version 7.9 | |
Verizon UniCERT version 5.3.8 | |
GlobalSign | |
Digicert | |
IDnomic (formely known as OpenTrust) PKI version 4.8.1 | |
Database | Card Repository |
SQL Support (Native Client: 9.0, 10.0 and 11.0) | |
Backup / Restore | |
Multi-forest & Multi-domain | |
HSM | Gemalto Safenet Luna |
Gemalto Safenet ProtectServer | |
Utimaco SafeGuard CryptoServer | |
Thales nShield | |
Engage Black Vault | |
Card Printer | Evolis Primacy |
HID Fargo HDP5000 | |
DataCard SR300 | |
Magicard Prima 4 | |
Matica 8300 | |
Advanced Batch Mode | |
Card Layout Definition | |
Two-Factor Authentication Service (SMS) | Telesign |
Clickatell | |
Certificall | |
Tyntec | |
Dolphin | |
PACS and Other Connectors | Mail Server (SMTP) |
Photo Camera, webcam or Scanner | |
Data Export (SQL & CSV) to synchronize with other systems: Time attendance, HR, Printing etc. | |
Physical Access (PAMS) | |
Logging | Option to log events to the Windows Event Log |
Other CMS | Upgrade path from vSEC:CMS K-Series and T-Series |
Migration path from competing CMS products (inquire for more details) |