The words you are searching are inside this book. To get more targeted content, please make full-text search by clicking here.

Detailed Overview of Hitachi ID Password Manager.

See more at: http://hitachi-id.com/documents/

Discover the best professional documents and content resources in AnyFlip Document Base.
Search
Published by hitachiid, 2017-07-06 12:39:15

Hitachi ID Password Manager

Detailed Overview of Hitachi ID Password Manager.

See more at: http://hitachi-id.com/documents/

Keywords: active directory administration, active directory password reset, active directory password reset software, active directory password reset tool, ad password reset tool,password management, password management software, password manager software, password reset software, password reset system, password safe, password sync, password synchronization,self service password reset, self service password reset software, self service password reset tool, self-service password reset, service account password, service account password management, shared account management, shared account password management, shared id management, shared user management, single sign on, single sign on authentication, single sign on software, single sign on solutions, sso login, synchronize passwords

1 Hitachi ID Password Manager

Managing the User Lifecycle
Across On-Premises and
Cloud-Hosted Applications

Integrated Credential Management for Users:
Passwords, encryption keys, tokens, smart cards and more.

2 Agenda

• Hitachi ID corporate overview.
• Hitachi ID Suite overview.
• Password problems and Hitachi ID Password Manager benefits.
• The HiPM solution.
• Software demonstration.

© 2015 Hitachi ID Systems, Inc. All rights reserved. 1

Slide Presentation

3 Hitachi ID Corporate Overview

Hitachi ID delivers access governance
and identity administration solutions
to organizations globally.
Hitachi ID solutions are used by Fortune 500
companies to secure access to systems
in the enterprise and in the cloud.

• Founded as M-Tech in 1992.
• A division of Hitachi, Ltd. since 2008.
• Over 1200 customers.
• More than 14M+ licensed users.
• Offices in North America, Europe and

APAC.
• Partners globally.

© 2015 Hitachi ID Systems, Inc. All rights reserved. 2

Slide Presentation

4 Representative Customers

5 Hitachi ID Suite

© 2015 Hitachi ID Systems, Inc. All rights reserved. 3

Slide Presentation

6 PM Differentiators

Hitachi ID Others
Password Manager

Built-in • Password synchronization • Password reset.
Functionality: • Password and PIN reset.
• HDD crypto key recovery.
• Enterprise single sign-on.
• Manage tokens, smart cards.
• Update locally cached

passwords.

Always available:

• PC web browser, smart phone. • PC web browser.
• PC login screen. • PC login screen.
• Phone call. • Only at work.
• At work and off-site

Integrations:

• 110+ target types. • Typically 1 to 10 connectors.
• 10+ ITSM ("ticketing") • No ticketing integration.

systems.

Scalability:

• Multi-master, active-active, • Single server, single location.
replicated. • Hope users enroll after a big

• Load balanced, geographically mail blast.
distributed.

• Automatically discover users,
manage enrollment.

© 2015 Hitachi ID Systems, Inc. All rights reserved. 4

Slide Presentation

7 Problem: Too Many Passwords

Every login account has its own: Password complexity creates business
problems:
• Password value.
• User interface. • High call volume :
• Strength rules. Users forget or lock out their passwords.
• Expiration date. This can be 30% of help desk workload.

• Sticky notes :
Users write down their passwords and
may leave them in public view.

• Bad passwords :
Users choose simple, easily guessed
passwords.

8 The HiPM Solution

Hitachi ID Password Manager addresses the problems that arise from password complexity:

• Cost savings from simplified password management, rapid deployment, low TCO and fast ROI.
• Improved security from strong authentication, policy enforcement.
• Scalability to hundreds of thousands of users.
• Flexibility to integrate with existing infrastructure.

9 Problem: Password Management Costs

End users: Lose productivity when they have trouble logging in.
Support analysts:
Spend much of their time resolving password problem calls. Must be
System administrators: staffed for peak volume after holidays.

Resolve escalated password problems.

© 2015 Hitachi ID Systems, Inc. All rights reserved. 5

Slide Presentation

10 HiPM Cost Savings

Synchronization: Eliminates 60% to 90% of password problems.
Self-service reset:
When adopted by 40% to 70% of users, diverts problem resolution away
Assisted reset: from the help desk.

Shortens remaining password reset HD calls by 50% or more, to about 1
minute/call.

11 Problem: Password Security

Policy: Users prefer easily guessed passwords, write and share passwords.
Authentication: Weak caller authentication prior to HD password resets.
Delegation: Support staff require too many administrative logins.
Accountability: For support staff who perform resets.
Encryption: Passwords should not be sent or stored in the clear.

12 HiPM Security Benefits

Policy: Hitachi ID Password Manager can enforce over 50 password rules, on every
system.
Synchronization: No need to write down multiple passwords.
Authentication: Users are identified before being allowed a HD password reset.
Delegation: Support staff no longer require administrative credentials.
Accountability: All password-related events logged.
Encryption: Sensitive data is sent and stored encrypted.

© 2015 Hitachi ID Systems, Inc. All rights reserved. 6

Slide Presentation

13 The Hitachi ID Solution is Flexible

Customize: Every aspect of the user interface

Integrate with: 110+ target system types
Enforce: Call tracking systems
HR systems
Authentication hardware
Meta directories
IVR servers

Password policy
Authentication rules

© 2015 Hitachi ID Systems, Inc. All rights reserved. 7

Slide Presentation

14 User Interface Flowchart

Access Identify Authenticate Action

Desktop Network Login ID Network Password Update Passwords
Web Browser

Workstation E-mail Address Hardware Token Attach Login IDs
Login Prompt

Smart Phone Employee Number Smart Card Enroll Security
Questions

Voice Call Answer Security Register Voice
Questions Print

Biometric Sample Unlock OTP
(voiceprint) Device

SMS/PIN PIN Reset on
Smart Card

Unlock Encrypted
HDD

© 2015 Hitachi ID Systems, Inc. All rights reserved. 8

Slide Presentation

15 Included Connectors

Many integrations to target systems included in the base price:

Directories: Servers: Databases:
Any LDAP, AD, WinNT, NDS, Windows NT, 2000, 2003, Oracle, Sybase, SQL Server,
eDirectory, NIS/NIS+. 2008[R2], 2012, Samba, DB2/UDB, Informix, Progress,
Novell, SharePoint. ODBC, Oracle Hyperion EPM
Shared Services, Cache.
Unix: Mainframes, Midrange:
Linux, Solaris, AIX, HPUX, 24 z/OS: RACF, ACF2, HDD Encryption:
more variants. TopSecret. iSeries, McAfee, CheckPoint,
OpenVMS. BitLocker, PGP.
ERP:
JDE, Oracle eBiz, Collaboration: Tokens, Smart Cards:
PeopleSoft, PeopleSoft HR, Lotus Notes, iNotes, RSA SecurID, SafeWord,
SAP R/3 and ECC 6, Siebel, Exchange, GroupWise, RADIUS, ActivIdentity,
Business Objects. BlackBerry ES. Schlumberger.

WebSSO: Help Desk: Cloud/SaaS:
CA Siteminder, IBM TAM, ServiceNow, BMC Remedy, WebEx, Google Apps, MS
Oracle AM, RSA Access SDE, HP SM, CA Unicenter, Office 365, Success Factors,
Manager. Assyst, HEAT, Altiris, Clarify, Salesforce.com, SOAP
RSA Envision, Track-It!, MS (generic).
System Center Service
Manager

© 2015 Hitachi ID Systems, Inc. All rights reserved. 9

Slide Presentation

16 Rapid Integration with Custom Apps

• Hitachi ID Password Manager easily integrates with custom, vertical and hosted applications using
flexible agents .

• Each flexible agent connects to a class of applications:

– API bindings (C, C++, Java, COM, ActiveX, MQ Series).
– Telnet / TN3270 / TN5250 / sessions with TLS or SSL.
– SSH sessions.
– HTTP(S) administrative interfaces.
– Web services.
– Win32 and Unix command-line administration programs.
– SQL scripts.
– Custom LDAP attributes.

• Integration takes a few hours to a few days.
• Fixed cost service available from Hitachi ID.

17 Multi-Master Architecture

Rewveerbseproxy Validate pwNactihvaenpgaesswordPAaDstOr,siUSgwLg/no3Deirx9AArd,0SsP,sy,4ys0nt0cehms CloSuada-Shoasptpesd,

LoabdalancerHitachi ID Tarlgoecutanlsiayxsg,teoenlmdt:esOrwRSiS/t3hA90, WTaerrbgeemsSteoAsrtvyPesi,ctaNeegosmetensstw:, AeitDthc, SQL,
server

SQL
DB

VPsNerver NLooatinabfiddaclaiantnivocitneasTrtiicoknests Replication Data center B
ID
IVRserver SQL
DB

Hitachi
server

E-msyasiltem Sysotfermecord Firewall TaRrSgeyestmtemoste data center

TCP/IP + AES Incmidgemntt system HcRenter A Firewall
Various Protocols Pro(ixfynseeerdveedr)
Secure Native Protocol Data
HTTPS

© 2015 Hitachi ID Systems, Inc. All rights reserved. 10

Slide Presentation

18 Scalability and Fault-Tolerance

• Multiple, load-balanced Hitachi ID Password Manager servers:

– Active/active architecture.
• Data replication between nodes:

– Built-in, easy to configure.
– WAN-friendly (high latency, low bandwidth, insecure channels).
– Reliable (multiple retry queues).
• Proxy servers resolve connection problems:

– Across firewalls.
– Over slow, insecure network routes.
• Large production deployments:

– 5M users.
– 130,000 managed systems.
– 12 load balanced IAM servers.
– 10,000 completed transactions/hour.

19 Password Synchronization

Problem Solution

• Users have too many passwords: • Password synchronization pushes
password updates from one system to
– On different systems, another:
– with different policies,
– expiring at different times. – Multiple physical passwords.
– Same value everywhere.
• Complexity leads users to do bad things:
• Password synchronization allows users to:
– Write down passwords ("sticky
notes"). – Remember a single password value.
– Manage it on a single schedule.
– Forget/lock out passwords and call – Comply with a single password
the help desk.
policy.
– Reuse old passwords.

© 2015 Hitachi ID Systems, Inc. All rights reserved. 11

Slide Presentation

20 Transparent Password Synchronization

Password synchronization is designed to help users maintain a single, strong password across
multiple login IDs.
Transparent password synchronization leverages an existing user interface.

• Users change their passwords natively on:

– Active Directory.
– Unix servers.
– LDAP directories.
– OS400 / iSeries servers.
– z/OS mainframes (RACF, CA-ACF2, CA-TopSecret).
• Hitachi ID Password Manager enforces a global policy, blocking weak passwords.
• Approved passwords are synchronized to other accounts belonging to the same user.

21 Transparent Synchronization Architecture

User LoaBdalancNearctihvaeSnptgaaerstssHwyinotIcarddhce.hnitPIiDtaysTrsaiwgngoderdAr ScSyycsnetceshms sManagement

Suite RSA
TarwgietthSreysmteomtesagent
TarwgietOthSSloy/3cs9tae0lm,aUgsnenixt,:

TCP/IP + AES
Secure Native Protocol

© 2015 Hitachi ID Systems, Inc. All rights reserved. 12

Slide Presentation

22 Web Password Synchronization

Password synchronization is designed to help users maintain a single, strong password across
multiple login IDs.
Web password synchronization exposes a new user interface.

• Access a Web-based password change screen using any browser.
• Enter a trusted network login ID and password.
• Select a new password for one or all systems and accounts.
• Review results from the password update on each system.

23 Web Password Synchronization Architecture

User

Web Web Access ManagemenTtaSrwguieitOttheSSloy/3cs9tae0lm,aUgsnenixt,: RSA
LoaBdalancer TarwgietthSreysmteomtesagent
HitIadcehnitIiDty and

TCP/IP + AES
Secure Native Protocol

© 2015 Hitachi ID Systems, Inc. All rights reserved. 13

Slide Presentation

24 Prompting Users to Synchronize

Users do not volunteer to change their passwords.

• Hitachi ID Password Manager can identify users who should change their passwords either based
on upcoming expiration on a target system, or based on the last HiPM update.

• Users are asked to change their passwords:

– By e-mail, with an embedded URL to the HiPM server.
– By a Web browser, automatically opened during the network login script.

25 Benefits of Password Synchronization

• Improved user service.
• Users have fewer password problems, so waste less time with login problems and call the help desk

less frequently.
• New passwords meet global quality standards.
• All passwords are changed regularly.

26 Self-Service Password Reset

Problem Solution

• Some users continue to forget passwords • Self-service password reset enables
or trigger lockouts. users to authenticate themselves with
something else (a token, biometric,
• These users still call the help desk. personal questions, etc.) and reset their
• High call volume is expensive. own password(s).

• Hitachi ID Password Manager SSPR
allows these users to resolve their own
problems:

– This lowers help desk call volume.
– User service is available 24x7.
– Accessible via web browser, phone

or from the login prompt.

© 2015 Hitachi ID Systems, Inc. All rights reserved. 14

Slide Presentation

27 Access from Login Prompt Solution

Problem • Secure Kiosk Account (SKA): access to
Users who forget their network password SSPR without client software ("guest"
cannot launch a Web browser to access the account).
self-service password reset application.
• GINA service: access to SSPR from UI
extension – no GINA DLL.

• Hitachi ID Phone Password Manager:
turn-key telephone access to SSPR.

• Temporary VPN: access to SSPR from
outside the corporate network.

28 Secure Kiosk Account (SKA)

Support locked out users without deploying client software.

• User signs on with the login ID HELP
• No password is required to sign into the SKA.
• The SKA account has a special security policy.
• The policy specifies an alternate to the Windows shell.
• The Hitachi ID Password Manager shell opens a kiosk-mode Web browser to the self-service

password reset Web page.
• Applies both to on-line and mobile users.
• Can be used to reset/unlock both local and networked passwords.
• No browser navigation, controls, border, etc.
• Closing the browser logs the user off.

© 2015 Hitachi ID Systems, Inc. All rights reserved. 15

Slide Presentation

29 GINA Extensions

Support locked out users without a "generic" domain account:

• Extend the Windows Graphical Identification and Authentication (GINA) subsystem, which:

– is responsible for capturing Ctrl-Alt-Del,
– presents the login screen and
– handles screen savers.
• The Windows GINA can be replaced by third-party DLLs, such as:

– Novell NetWare.
– Strong authentication products (smart cards, biometrics, etc.).
• Hitachi ID Password Manager includes two GINA extension approaches, both of them:

– Launch a kiosk-mode web browser.
– Run the browser with an unprivileged account.
• The first is a GINA wrapper DLL that adds a password reset button in the login prompt.
• The second is a GINA service program that adds a password reset button without modifying the
native GINA DLL.

30 Self-service via Telephone 16

• Identification options:

– Numeric ID (e.g., employee number).
– Numeric mapping of network login ID.
• Authentication options:

– Numeric security questions (e.g., driver’s license, DoB).
– Biometric voice print verification.
– Hardware token.
• Features:

– Password reset / unlock.
– Token PIN reset.
– HDD encryption key recovery.
• Platform options:

– Use HiTPM (turn-key system).
– Extend call logic on an existing IVR, using Hitachi ID Password Manager API.
• Limitations:

– Cannot reset PINs on smart cards.
– Cannot update cached credentials on mobile PCs.

© 2015 Hitachi ID Systems, Inc. All rights reserved.

Slide Presentation

31 Flexible, Secure Authentication

• Hardware tokens: generated password + keyed PIN.
• Biometric: voice print, finger print.
• PKI: smart cards, software certificates.
• Challenge/response using:

– Built-in or external data source.
– Both user-defined and standard questions.
– A flexible algorithm to validate answers.
– Multiple sets of multiple questions.

• Open architecture: Easily integrate with new authentication systems.

32 Benefits of Self-Service Password Reset

Savings Security

40% to 70% of users resolve their own problem, • Stronger authentication prior to password
and do not call the help desk. resets.

• Reset passwords meet quality controls.
• Detailed audit trail of authentication

attempts, resets.

33 Help Desk Password Reset

Problem Solution

• Even with synchronization and • Assisted password reset shortens
self-service password reset, some users password-related support calls.
continue to call the help desk.
• One process and UI handles everything:
• These calls can take 5-15 minutes to
resolve and cost $25 – $35. – Authenticate the analyst.
– Authenticate the caller.
– Reset multiple passwords.
– Clear lockouts.
– Create/close a support incident

(ticket).

• Reduce call duration to about 1 minutes.
• Lower incident cost.

© 2015 Hitachi ID Systems, Inc. All rights reserved. 17

Slide Presentation

34 Assisted Password Reset Process

• Help desk analysts use a Hitachi ID Password Manager Web page to:

– Login (authenticate the analyst).
– Look up the caller’s record.
– Authenticate the caller.
– Reset one or more passwords.
– Automatically create a ticket in the call tracking system.
• Call resolution time is reduced to 1 – 2 minutes.
• Help desk analysts don’t require direct access to target systems.

35 Incident, E-mail Integration

Open architecture to push event notification to other systems.
• Simple configuration specifies what events to capture and what actions to take.
• Binary integration programs are included for:

– Altiris
– Assyst
– BMC Remedy
– SDE
– Footprints
– CA Unicenter
– Clarify
– HEAT
– HP Service Desk
– ServiceNow
– Tivoli
– Track-It!
• Extensible via SMTP, HTTP(S), XML, ODBC.

© 2015 Hitachi ID Systems, Inc. All rights reserved. 18

Slide Presentation

36 HiPM Assisted Service Notes

Help desk analysts may:

• Either see, or be required to type answers to caller-authenticating questions.
• Either reset passwords, or reset-and-expire passwords.
• Enable or disable caller access to Hitachi ID Password Manager self-service.
• Be granted the ability to:

– See or edit answers to security questions.
– See or edit login ID profiles data.
– Manage SecurID tokens.

37 Benefits of Assisted Password Reset

Savings Security

Remaining password reset calls are reduced to • Ensure that callers are always
approximately 1 minute. authenticated prior to password resets.

• Reduce the number of people with
administrative rights.

• Improve accountability for help desk
password resets.

• Enforce password policy over reset
passwords.

© 2015 Hitachi ID Systems, Inc. All rights reserved. 19

Slide Presentation

38 Impact of Synchronization and SSPR

calls
problems

© 2015 Hitachi ID Systems, Inc. All rights reserved. 20

Slide Presentation

39 RSA SecurID Token Management

Problem Solution

Users with RSA SecurID tokens forget their Users can clear, synchronize or reset their
PINs, lose their tokens, require clock token PINs; synchronize their token clocks;
synchronization, etc. enable/disable their tokens or get emergency
access passcodes using the Hitachi ID
Password Manager self-service token
management feature.

40 Token Management Process

• Users authenticate with a password.
• Once authenticated, users can:

– Enable / disable tokens.
– Request emergency access codes.
– Clear / set their PIN.
– Re-synchronize tokens.

41 Benefits of Token Management

Savings Security

Fewer, shorter help desk calls for token • Fewer people with ACE administration
problems. privileges.

• Stronger authentication prior to token
support.

© 2015 Hitachi ID Systems, Inc. All rights reserved. 21

Slide Presentation

42 Managed User Enrollment

Problem Solution

• Deployment may require new user profile • Hitachi ID Password Manager includes a
data: managed enrollment system, which
identifies users that need to enroll and
– Question/answer pairs for invites them to do so.
authentication.

– Login ID reconciliation between
systems.

– Biometric samples (e.g., voice
prints).

43 Reconcile Login IDs Between Systems

Where login IDs are different on some systems, and there is no existing directory, meta
directory, matching attribute or map file to connect them, users can be prompted to "claim" their
own IDs:

• Users sign into a secure Hitachi ID Password Manager registration Web page.
• Users enter a login ID and password.
• HiPM finds unallocated instances of the login ID in the identity cache and tries to sign into those

target systems with the password the user provided.
• The login ID / target system ID is added to the user’s profile if the password worked.

44 Benefits of Managed Enrollment

Savings Security
Simple to setup, low-cost data gathering.
• Secure authentication prior to registration.
• Collect answers to security questions.
• Correlate login IDs across all systems.
• Identify orphan accounts.

© 2015 Hitachi ID Systems, Inc. All rights reserved. 22

Slide Presentation

45 Rapid Deployment and Low TCO

Optimized to minimize effort: Using Hitachi ID Password Manager
technology:
• HiPM:
• Built-in discovery, mapping of IDs,
– Initial deployment: entitlements.
1 – 2 months.
• Managed user enrollment (e.g., Q&A).
– Ongoing maintenance: • Client software optional.
0.25 – 0.5 FTE. • 110 connectors out of the box (more easy

to add).

46 Technology Advantages

Unique features Rapid deployment
• Reference builds accelerate deployment.
• "Administration" and "governance" in one • Key features built-in:
product. – Request forms.
– Authorization workflow.
• Access, authorization built around – Access certification.
relationships.
Integrations
• Self-service from any device, any • 110+ included connectors.
location. • Flexible/scriptable connectors.
• Incident management/ticketing.
• Intercept "Access Denied" errors to • SIEM.
simplify requests.

• "One stop shopping" with implementer
workflows.

• SoD engine detects effective violations.

Scalable platform

• Real-time data replication.
• Multi-master, active-active.
• Proxy server to cross firewalls.
• Native code + stored procedures.

© 2015 Hitachi ID Systems, Inc. All rights reserved. 23

Slide Presentation

47 HiPM Animated Demonstration

The following animations illustrate core Hitachi ID Password Manager user interfaces and processes:

• Security question enrollment: • SSPR with GINA Extension:

– A user authenticates and – A locked out user resolves his own
completes his personal profile of problem, from the login prompt,
questions and answers. using a GINA extension.

• Alias enrollment: • SSPR with Vista credential provider:

– A user attaches non-standard login – A locked out user resolves his own
IDs to his profile. problem, from the login prompt,
using a Windows Vista credential
• Password expiration: provider.

– A user is invited, via e-mail, to • Assisted password reset:
change soon-to-expire passwords.
– A help desk analyst signs in with an
• Self-service password reset (SSPR) RSA SecurID token and resets a
using Secure Kiosk Account: caller’s password.

– A locked out user resolves his own • PIN Reset for an RSA SecurID token:
problem, from the login prompt,
without client software deployment. – A user resets his RSA SecurID
token PIN with HiPM.

48 Locked out Windows 7 user resets own password

Animation: ../../pics/camtasia/v9/hipm-pw-reset-vista-nb/hipm-pw-reset-vista-nb.mp4

49 Locked out Windows XP user resets own password

Animation: ../../pics/camtasia/v8/hipm-pw-reset-gina/hipm-pw-reset-gina.cam

© 2015 Hitachi ID Systems, Inc. All rights reserved. 24

Slide Presentation

50 Locked out Windows user resets own password (no software
footprint)

Animation: ../../pics/camtasia/v8/hipm-pw-reset-ska/hipm-pw-reset-ska.cam

51 Enrollment of security questions

Animation: ../../pics/camtasia/v9/hipm-qa-enrollment/hipm-qa-enrollment.mp4

52 Enrollment of non-standard login IDs

Animation: ../../pics/camtasia/v82/hipm-alias-enrollment/hipm-alias-enrollment.cam

53 RSA SecurID Self Service Token Support

Animation: ../../pics/camtasia/v82/hipm-rsa-token-reset/hipm-rsa-token-reset.cam

54 Reminder to change passwords

Animation: ../../pics/camtasia/v9/hipm-pw-expired-email/hipm-pw-expired-email.mp4

© 2015 Hitachi ID Systems, Inc. All rights reserved. 25

Slide Presentation

55 Assisted Password Reset

Animation: ../../pics/camtasia/v9/hipm-assisted-pw-reset/hipm-assisted-pw-reset.mp4

56 Hitachi ID Professional Services

• Hitachi ID offers a variety of services relating to Hitachi ID Password Manager, including:

– Needs analysis and solution design.
– Fixed price system deployment.
– Project planning.
– Roll-out management, including maximizing user adoption.
– Ongoing system monitoring.
– Training.

• Services are based on extensive experience with the Hitachi ID solution delivery process.
• The Hitachi ID professional services team is highly technical and have years of experience deploying

IAM solutions.
• Hitachi ID partners with integrators that also offer business process and system design services to

mutual customers.
• All implementation services are fixed price:

– Solution design.
– Statement of work.

57 Hitachi ID Solution Delivery Approach

Fixed-price: All work is delivered on a fixed-price, fixed-deliverables basis. The
Phases, milestones: "meter" is never running.
Open assignment:
Templates: Hitachi ID recommends breaking up long projects into phases of 1–3
Customer portal: months. Work is reviewed and payment is due when milestones are met.

Each phase may be undertaken by Hitachi ID, the customer, a systems
integrator or a combination of the participants.

Template documents and sample business logic are used to expedite
work.

A self-service portal supports discovery, client/partner/vendor interaction,
document distribution and more.

© 2015 Hitachi ID Systems, Inc. All rights reserved. 26

Slide Presentation

58 AdMax: Maximizing User Adoption

• Successful implementation of an identity and access management system must be supported by an
effective user adoption program.

• AdMax is an Hitachi ID professional services program, used to plan for and execute effective user
enrollment projects.

• AdMax is designed to maximize adoption of and ROI from Hitachi ID identity management solutions,
using:
– Best practices, case studies and industry norms.
– Enrollment, user adoption and ROI measurement.
– Incentive and disincentive programs.
– Presentations and training materials for users and HD staff.
– Project roles and responsibilities.
– Sample project plans, promotional materials, e-mails, graphics and other user communications.
– Workbooks for project implementation.

59 Summary

An integrated solution for managing credentials:
• Immediate security benefit: password policy, help desk caller authentication.
• Low deployment cost, minimal ongoing investment, significant IT support savings.
• Always accessible:
– Web browser on PC, phone or tablet.
– Windows login prompt.
– Pre-boot encryption password prompt.
– Phone call / IVR.
– Available at work and while off-site.
• 110+ connectors included.

Learn more at Hitachi-ID.com/Password-Manager

500, 1401 - 1 Street SE, Calgary AB Canada T2G 2J3 Tel: 1.403.233.0740 Fax: 1.403.233.0725 E-Mail: [email protected]

ww w.Hitachi-ID.com Date: May 22, 2015 File: PRCS:pres


Click to View FlipBook Version