vSEC:CMS S-Series

vSEC:CMS will change your views on how to manage the lifecycle of user authentication credentials. The vSEC:CMS S-Series is an innovative, easily integrated and cost effective Smart Card Management System or Credential Management System (SCMS or CMS) that will help you deploy and manage credentials within your organization.

Vendor Independent

The vSEC:CMS is fully functional with minidriver enabled credentials such as smart cards, usb tokens and virtual smart cards including Windows Hello for Business (WHfB) and it streamlines all aspects of managing credentials by connecting to enterprise directories, certificate authorities, physical access control systems, email servers, log servers, biometric fingerprint readers, PIN mailers... the list goes on. With vSEC:CMS organizations can issue Credentials to employees, personalize the Credentials with authentication credentials and manage the lifecycle of the Credentials - directly from the off-the-shelf product.

Versasec is an IAM provider that helps businesses manage their access-enabling devices.

vSEC:CMS Connectors (see figure above)

  1. 1. Smart card printer for batch operations
  2. 2. User directory for looking up users
  3. 3. File and database servers
  4. 4. Secure transport of PIN codes
  5. 5. Event & log management
  6. 6. User photo capture
  7. 7. Certificate/PKI services
  8. 8. Physical access control systems
  1. 9. Hardware security module
  2. 10. Secondary authentication (IdP/OIDC/SMS/email)
  3. 11. Key archival & key recovery
  4. 12. Credential provider -login screen interface
  5. 13. Remote security device management
  6. 14. Credentials such as physical & virtual smart cards/tokens
  7. 15. User self-service application
  8. 16. Administrative operator console

Product News

vSEC:CMS Version 5.8 is now available. A press release about this version is available here. In the latest version of vSEC:CMS we have updated some of the core components for data storage and communication. We have increased the speed in the performance of all our vSEC:CMS applications, suchs as: the User Self-Service (USS, the Operator Console and even more the vSEC:CMS server-side services. A short summary of the major enhancements in vSEC:CMS 5.8 are:

  • Updated database interface enabling faster operations, lower memory usage and higher throughput.
  • SSL is now supported for the gRPC protocol. gRPC significantly improves client server communication speed and resource usage.
  • It is now possible to install vSEC:CMS without a physical System Owner Card. This enables a much faster way to get a Proof of Concept (PoC) setup!
  • Extended Windows Hello for Business (WHfB) integration with support for multi-role user accounts, multi-key per container and connectors to additional CAs.
  • RSDM can now make use of the fast gRPC protocol
  • The Thales TCT Luna T-Series HSM can now be utilized by vSEC:CMS
  • The following PKI credentials are now fully supported by vSEC:CMS:
    • Thales IDPrime 930/3930
    • Aventra MyEID 4.5
    • Key-ID PKI
    • Extended Feitian FIDO Security Key support: In this version we have further improved the management of Feitian’s tokens and smart cards. Extra attention has been put on the new K9 token and PIV applet management.

Evaluation- Download Today!

Once downloaded and installd vSEC:CMS is ready to use in Evaluation Mode. During the evaluation, you can configure your environment with up to 5 licenses and your own use cases. Each license manages one credential. Additional licenses can be acquired as a subscription or as a perpetual license. Please contact a Versasec reseller or Versasec directly to proceed.

Schedule a Demo

To enjoy the vSEC:CMS S-Series full feature set (including Self-Service, Virtual Smart Card, HSM support etc), schedule a demo with Versasec or contact your local Versasec reseller.

Scalability

The vSEC:CMS scales with your project. With the new load balancing capability, there is no upper limit!

versasec media

Integrability - APIs

The vSEC:CMS S-Series can be integrated and connected in many different ways, the drawing below is trying to visualize the most commonly used options.

Versasec is an IAM provider that helps businesses manage their access-enabling devices.

Product Sheet

Download the vSEC:CMS S-Series product sheet here.

[pdf]

vSEC:CMS

More information about the complete vSEC:CMS product suite can be found here.

[more]

Update from 3rd Party SCMS

vSEC:CMS S-Series includes upgrade wizards that enables quick and simple upgrade paths from third party credential management systems.

Check out the details on how to upgrade from:

Resellers

The product can be purchased from authorized vSEC:CMS integrators and resellers, via our partners reseller network or contact Versasec directly to let us help you find the best way forward.

Videos

The vSEC:CMS video content can be found here.

Supported Credentials

 

vSEC:TOOL

vSEC:CMS

Supported Credentials

K

S

C

ACS ACOS5-64

ACS CryptoMate64

Athena CNS

Athena IDProtect Key Nano USB

Athena IDProtect Key USB Token

Athena IDProtect Smart Card

Aventra MyEID 4.5

Avtor CryptoCard 337

CardOS 4.4

CardOS 5.3

Cryptovision ePKI Applet

Key-ID PKI

Feitian ePass FIDO-NFC

Feitian BioPass FIDO2

Feitian eJava Token

Feitian SmartCard

Feitian ePass2003

Thales IDPrime .NET 510

Thales IDPrime .NET 5500

Thales IDPrime MD 830

Thales IDPrime MD 840

Thales IDPrime MD 930

Thales IDPrime MD 940

Thales IDPrime MD 3810

Thales IDPrime MD 3840

Thales IDPrime MD 3930

Thales IDPrime MD 3940

Thales IDPrime PIV 2.1

Thales IDPrime PIV 3.0

Thales MultiApp ID

Thales Safenet eToken 5110

Thales Safenet eToken 5110 FIPS

Thales Safenet eToken 5300

HID Global Crescendo C200

HID Global Crescendo C1150

Identiv uTrust MD

Longmai mToken CryptoID

Microsoft minidriver enabled devices

Microsoft Windows Hello for Business

Mifare DESFIRE EV1

Morpho ypsID S2

Morpho ypsID S3

Oberthur Authentic

Oberthur IAS ECC

Oberthur PIV 8.1

Open FIPS 201 Applet

Raak Technologies C2

SafeTrust-PIV on Placard

Taglio C2

Taglio PIVKey

TCOS TeleSec IDKey

Virtual Smart Cards

Yubico YubiKey 5 NFC/5C/5 Nano/5C Nano

Yubico YubiKey 4/4 Nano/4C/4C Nano

Yubico YubiKey NEO/NEO-n

NOTE
- The credential is supported by the product.
L - Known limitations - check release notes.
For details about validated middleware/minidrivers check the Versasec support portal or contact us.

The table below highlights the key features included in the vSEC:CMS product suite. Further detailed information about each product is provided from this table.

 

vSEC:TOOL

vSEC:CMS

Product Features

K

S

C

User-Side Credential Operations

  • Change User PIN
  • Offline Unblock User PIN (User Side)
  • Certificate Listing
  • Card Information
  • Support for a large set of credentials

Operator-Side Credential Operations

  • Admin Key Change
  • Online Unblock User PIN
  • Offline Unblock User PIN (Operator Side)
  • User PIN Policy Update
  • Certificate Management (pfx or p12 Import, Delete)

Advanced Operator Side Smart Card Operations

  • Admin Key Diversification
    from Hardware Protected Masterkey
  • User Fingerprint Policy Update
  • Batch mode support
 

Database

  • Card Repository
  • SQL Support
  • Backup / Restore
  • Multi-forest & Multi-domain
 

Smart Card Management System Features

 
 

vSEC:TOOL

vSEC:CMS

Product Features

K

S

C

Advanced Management Features

  • User Self-service and MS Credential Provider
  • Key archive and key restore
  • Smart Card Stock Management
  • Granular Operator Permissions and Access Control
  • Card Printing
  • Photo Capturing
 

Systems Integrations

  • Certification Authorities (MS CA, Entrust, DigiCert, EJBCA, GlobalSign...)
  • User Directories (LDAP, MS AD)
  • Physical Access System (RFID)
  • Identity Providers (IdP) using OpenID Connect (OIDC)
  • Windows Event Log
  • Mail Server (for PIN mailing)
  • Hardware Security Module (HSM)
 

Integrations/APIs

Server-Side
  • SQL Database Interface
  • SQL High Availability - Microsoft Always On
  • SOAP Helpdesk API
  • SOAP Lifecycle API
Client-Side
  • COM API
  • Web Start API
  • Plugin API
  • Physical Access System (PACS) API
 
 

vSEC:TOOL

vSEC:CMS

Licensing/Packaging

K

S

C

Freeware
   
Perpetual Licenses
   
Subscription
 
Stand Alone Application
   
Installation Package
   
Ready To Deploy Image
   

The feature is included in the product.