• CSS Blog items for Identity & Access Management

  • Reference Attributes, Group Membership and Shifting Authoritative Sources
  • Apple Products Becoming (Business) Mainstream
  • FIM Multivalued Attribute Tables
  • iOS 5, S/MIME, and Digital Certificate Management
  • FIM – Multiple MAs and Attribute Precedence

• Resources

  • PKI Data Sheet »

Application Layer Security

Federation Services

Make identities portable across organizational and technological boundaries using industry standard protocols. Leverage cloud-based services in a seamless manner or optimize existing cloud-based service to your customers.

Federated identity solutions can be used to dramatically reduce helpdesk calls and password management by providing Single Sign-On across traditional trust boundaries. Federation can be used internally to bridge different directories and environments, as well as externally with customers and partners. This allows companies to share applications, and gain Single Sign-On to those applications, without having to adopt the same technology infrastructure for security and directory services.

CSS partners with our customers and organizations to help develop SAML and WS-Federation based federated identity solutions that provide authenticated user information to be shared between business partners.

For more information, see our white paper, “Federated Identity in the Enterprise.” View pdf

Our capabilities include Web-based single sign-on for cross-organization trust in three models:

• Service provider model, where users link to the service providers from their internal Web portal.
• Identity provider model, where multiple identity stores are consolidated for a single authoritative identity and access repository.
• Cross domain model, where both organizations perform service provider and identity provider functions.

Application Publishing

Make internal and partner extranet applications available universally, while providing deep packet inspection, endpoint protection, and simplified authentication.

Cross Platform Authentication

Leverage an existing Active Directory infrastructure to control authentication to multiple non-Windows platforms.

Authorization Management Solutions

Provide an identity infrastructure that tears down application authorization silos and instead provides seamless access to designated network resource.