FIDO Credential Management
vSEC:CMS version 6.3 includes lifecycle management of FIDO credentials. With vSEC:CMS, FIDO user credentials can automatically be enrolled and managed in Identity Providers (IdP). Thereby providing your cloud and enterprise Service Providers (SP) strong authentication of your users.
FIDO and PKI
Versasec’s vSEC:CMS v6.3 customers can now manage integrated FIDO credentials with their vSEC:CMS deployments.
Benefits of a centralized FIDO credential management:
- FIDO credential management
- Lifecycle management of FIDO credentials including issuance and revocation
- Single pane of glass management of PKI and FIDO user device traceability
- Improve user experience
- Increase security and simplified onboarding administration, by using the same vetting and onboarding process
By offering FIDO management together with PKI management, Versasec brings the best of two worlds into one solution taking the management of FIDO security devices to the next level.
Use cases
The table below highlights the key feature differences between PIV/PKI and FIDO2.
Feature | PKI/PIV | FIDO2 |
Device logon | ||
Web logon | ||
E-Mail security | ||
VPN IPSec | ||
Document signing | ||
Encryption | ||
Mobile |
The feature is supported.
Security and Credential Management
The table below highlights the differences in regards to security and credential management between PIV/PKI and FIDO2.
Feature | PKI/PIV | FIDO2 |
Low complexity | ||
No CA necessary | ||
Key recovery | ||
Temporary device | ||
PIN management | ||
Lifecycle management | ||
Traceability | ||
Roles and permissions |
The feature is supported.
* The feature is supported with vSEC:CMS.

vSEC:CMS Connectors (see figure above)
1. Smart card printer for batch operations
2. User directory for looking up users
3. File and database servers
4. Secure transport of PIN codes
5. Event & log management
6. User photo capture
7. Certificate/PKI services
8. Physical access control systems
9. Hardware security module
10. Secondary/out-of-band communication
11. Key archival & key recovery
12. Credential provider -login screen interface
13. Remote security device management
14. User self-service application
15. Physical & virtual smart cards/tokens
16. Administrative operator console
Product News
vSEC:CMS Version 6.6 is now available. The new version incorporates a variety of enhancements, updates and automated tasks, including the following:
- Added Microsoft Azure AD Temporary Access Pass, AAD TAP, generation and distribution into credential issuance for onboarding of authentication methods, such as FIDO.
- New Certificate Authority integration: certSIGN’s certSAFE Certificate Authority. User credentials can now be issued from vSEC:CMS and vSEC:CLOUD with certificates from certSAFE CA.
- Navigation and user interface improvements for Admin and Agent applications.
- Added “credential update view” to the lightweight administrator application, vSEC:CMS Agent. Now, admins who prefer the agent application, can update user credentials without revoking and re-issuing. Credential updates can be triggered by changes in employee roles or company-wide policies. “Credential update view” screen saves time and resources updating credentials quickly and securely.
- Expanded supported credential list. Now, HID Crescendo 144K Smart Card can be configured and managed through vSEC:CMS and vSEC:CLOUD.
Evaluation - Download Today!
Register and download vSEC:CMS directly from versasec.com here.
Once downloaded and installed vSEC:CMS is ready for use in Evaluation Mode. During the evaluation, you can configure your environment with up to 5 licenses and your own use cases. Each license manages one credential. Additional licenses can be acquired as a subscription or by perpetual license. Please contact a Versasec reseller or Versasec directly to proceed.
Schedule a Demo
To enjoy the vSEC:CMS S-Series full feature set (including Self-Service, Virtual Smart Card, HSM support etc), schedule a demo with Versasec or contact your local Versasec reseller.
Scalability
The vSEC:CMS scales with your project. With the new load balancing capability, there is no upper limit!
Integrability - APIs
The vSEC:CMS S-Series can be integrated and connected in many different ways, the drawing below is trying to visualize the most commonly used options.
Product Sheet
Download the Versasec FIDO Credential Management product flyer [pdf]
Premium Support
vSEC:CMS
More information about the complete vSEC:CMS product suite can be found here.
Migrate to vSEC:CMS
vSEC:CMS includes upgrade wizards that enables quick and simple upgrade paths from third party credential management systems.

Check out the details on how to upgrade from:
- Read more about Thales SAM
- Read more aboutMicrosoft MIM/FIM CM
- Read more aboutGemalto DAS / IDAdmin 100
Resellers
The product can be purchased from authorized vSEC:CMS integrators and resellers, via our partner reseller network or contact Versasec directly to let us help you find the best way forward.
Videos
Product Features
The table below highlights the key features in the Versasec credential management product suites.
vSEC:CLOUD |
vSEC:CMS |
|||
User-Side Credential Operations
|
||||
Agent-Side Credential Operations
|
||||
Advanced Credential Operations
|
||||
Database
|
||||
Credential Management System Features
|
||||
vSEC:CLOUD |
vSEC:CMS |
|||
Product Features |
||||
Advanced Management Features
|
||||
Systems Integrations
|
||||
Server-Side Integrations/API
Client-Side Integrations/API
|
||||
vSEC:CLOUD |
vSEC:CMS |
|||
Licensing/Packaging |
||||
Managed by Versasec | ||||
Subscription | ||||
Perpetual Licenses | ||||
Installation Package |
NOTE
✔ – The credential is supported by the product.
L – Known limitations – check release notes.
For details about validated middleware/minidrivers check the Versasec support portal or contact us.
vSEC:CMS
Our product suite provides all the software tools to administrate and manage credentials in a secure and convenient way.
Free Product Trial
Versasec provides enabling IT security products centered on the usage of security devices such as smart cards. Our solutions enable customers to securely authenticate, issue and manage user credentials more cost effectively. Get a free product trial
Job Openings
We are always looking for new exceptional persons to join our team! Find out more about our job openings.
CMS/SCMS
SCMS = Smart Card Management Systems
CMS = Credential Management System
New to credential management? Have a look at the Wikipedia definition of a ‘Smart Card Management System’.
Versasec Support
Versasec customers with an existing support and maintenance contract can access the Versasec Support Portal, offering extensive professional support and maintenance services. The Versasec Support Portal offers a variety of services, allowing for customers and any site visitor to communicate directly with support engineers.
Company Blog
Our blog addresses the latest security trends and stories. The posts discuss how identity and access management are playing a larger role in keeping corporate data safe as well as brand reputations intact.