vSEC:CMS

Vendor Independent

vSEC:CMS is fully functional with minidriver enabled credentials such as smart cards, USB tokens and virtual smart cards including Windows Hello for Business (WHfB). It streamlines all aspects of managing credentials by connecting to enterprise directories, certificate authorities, physical access control systems, email servers, log servers, biometric fingerprint readers, PIN mailers… the list goes on. With vSEC:CMS, organizations can issue Credentials to employees, personalize the Credentials with authentication credentials and manage the lifecycle of the Credentials – directly from the off-the-shelf product.

Versasec Card Lifecycle Management

Versasec goes beyond basic identity management by offering unparalleled flexibility, advanced PKI/PIV, FIDO2, RFID capabilities, and seamless integration with identity providers (ie, Microsoft Entra ID). Thus, enabling organizations to meet their unique identity needs and exceed the requirements of modern security mandates, such as Executive Order 14028.

vSEC:CMS manages the lifecycle of identity credentials (smart cards, security keys, tokens, authenticators), integrating with identity providers (Microsoft Entra ID, Ping Identity, Thales STA), certificate authorities, user directories, smart card printers, hardware security modules, and more. This allows businesses to leverage existing IAM infrastructure with cloud-native Azure solutions.

Key Differentiators:

• Unmatched User Experience: vSEC:CMS simplifies credential management for both IT administrators and end-users. Our innovative self-issuance process with identity providers (ie, Entra ID, Ping Identity, Thales STA) allows employees to set up authentication devices without IT intervention. For scenarios where self-service is unsuitable, vSEC:CMS offers help-desk on-behalf of users management. This streamlines onboarding, especially for remote/hybrid workforces, and eliminates the complexities of traditional self-enrollment methods.
• Advanced FIDO2 Enterprise Features: Versasec is at the forefront of FIDO2 innovation. We provide centralized management of FIDO2 devices with features like PIN unblock, Relying Party allow lists, and granular control over fingerprint enrollment. This level of control is crucial for enterprise deployment security.
• Seamless Microsoft Entra ID Integration: vSEC:CMS leverages the latest technology in Microsoft Entra ID, enabling organizations to reach the full potential of Microsoft’s identity platform.
• Comprehensive IAM: vSEC:CMS offers a single pane of glass for managing all logical and physical (access) authentication needs. It supports multiple authenticators, integrates with existing infrastructure (cloud and on-premises), and provides complete lifecycle management for identity credentials.

Impact:

• Increased Efficiency: vSEC:CMS drastically reduces IT overhead. For example, pre-registering a FIDO key with vSEC:CMS takes a tenth of the time compared to traditional enrollment. This efficiency gain is further amplified with batch issuance, integrations, and APIs.
• Enhanced Security: Our solution strengthens security by protecting enrollment, revocation, and recovery processes. Features like FIDO2 PIN unblock (5 mins vs. hours for manual complete reset and recovery) minimize downtime and mitigate risks associated with temporary replacements with weaker authentication methods.
• Compliance and Oversight: vSEC:CMS provides comprehensive audit trails and reporting, ensuring compliance with industry regulations and security policies, including U.S. Executive Order 14028.

Addressing Trends:

Versasec is committed to supporting the global shift towards phishing-resistant authentication. Our robust FIDO2 implementation, coupled with identity providers, directly addresses the requirements of Executive Order 14028 and NIST Digital Identity Guidelines. By enabling organizations to adopt FIDO2 security keys and establish Zero Trust, Versasec creates a more secure digital landscape.

“Finally, we can start deploying FIDO2 – this is what we have been waiting for!” – CISO in aeronautics.

KuppingerCole Analysts chose Versasec as one of the first 8 companies to spotlight as KC Rising Star in 2024. A research spotlighting innovation and market alignment in the IAM, digital identity, and cybersecurity.

In conclusion, Versasec products are ideal to:

• Comply with security regulations through high-level security and reduced effort.
  Improve user experience and oversight through IT on-behalf-of-user management, simplified self-service, and streamlined workflows.
• Utilize identity investements to their fullest potential for secure and efficient identity management.
• Satisfy customers’ unique identity needs with a flexible and adaptable solution.

Evaluation – Download Today!

Once downloaded and installed vSEC:CMS is ready for use in Evaluation Mode. During the evaluation, you can configure your environment with up to 10 licenses and your own use cases. Each license manages one credential. Additional licenses can be acquired as a subscription or by perpetual license. Please contact a Versasec reseller or Versasec directly to proceed.

Schedule a Demo

To enjoy the vSEC:CMS full feature set (including Self-Service, Virtual Smart Card, HSM support etc), schedule a demo with Versasec or contact your local Versasec reseller.

Scalability

The vSEC:CMS scales with your project. With the new load balancing capability, there is no upper limit!

vSEC:CMS Connectors

Product Sheet

Download the vSEC:CMS product sheet here [pdf].

Videos

vSEC:CMS video content can be found here.

Integrability – APIs

The vSEC:CMS can be integrated and connected in many different ways, the drawing below is trying to visualize the most commonly used options.

Migrate to vSEC:CMS

vSEC:CMS includes upgrade wizards that enables quick and simple upgrade paths from third party credential management systems.

vSEC:CMS  includes upgrade wizards that enables quick and simple upgrade paths from third party credential management systems.

Check out the details on how to upgrade from:

• Read more about Thales SAM
• Read more about Microsoft MIM/FIM CM
• Read more about Gemalto DAS / IDAdmin 100

Resellers

The product can be purchased from authorized vSEC:CMS integrators and resellers, or directly from Versasec – contact Versasec to let us help you find the best way forward.

Versasec Supported Credentials

Versasec strives to support as many credential types as possible in all of Versasec’s products. We support PIV, PKI, Virtual, Physical Access, Logical Access, and FIDO/PIV, and FIDO only credentials. Versasec does not lock you in to one provider, we are credential-agnostic. The number of supported credential types is continuously increasing with every new product version. If you are using a credential that is not on the list, please contact Versasec to check if and when your credential will be supported. Supported Credentials: https://versasec.com/products/supported-credentials/