What’s new in summer’15 release - Security & Compliance
AM Side details
1. Access Management (for Best Practices & Use case)
OAM Features OAM Benefit
Authentication & Authorization
Advanced Authentication
Federation features
Single Sign On Features
Password management
Plug-in (Web gate) based security
Coherence feature
Access Manager Reports
Improved and secured authentication & authorization to
enterprise level applications. Centralized secure user
authentication (LDAP/AD).
Advanced authentication such as time based, network IP based,
token service, multifactor authentication will provide us level of
security applicable for sensitive enterprise IT applications.
Multi domain environment integration (test1.com & test2.com) to
achieve single sign on across different organization application
secure access to end user.
Authentication failure scenario/lock/unlock/login attempts,
tracking the logins are inbuilt features.
Plug-in based authentication will mask IT infrastructure from the
end users which will prevent from server hacking.
Detect anomalies with respective to application access and
control the user access and track their session and dismiss ay
administrator level.
Authentication & Authorization related reports in the form of
dashboards are inbuilt features.
Authentication & Authorization
Advanced Authentication
Federation features
Improved and secured authentication & authorization to
enterprise level applications. Centralized secure user
authentication (LDAP/AD).
Use Case: In an organization Active Directory is authentication
LDAP when you want to use single user login to access ERP & CRM
applications then you have 2 way of implementation
1) Integrate ERP & CRM application with Active Directory
individually.
2) Integrate Access Manager with ERP and CRM to delegate
authentication & authorization to Access manager system.
2. Difference between option 1 & option 2 are as follows
LDAP & Application integration V/s Access manager & Application
Integration.
Less secured More secured
Application URL can't
be masked from end user
Application UL can be
masked
No audit and
compliance features available
Rich audit &
compliance features available
Do not have control
over user sessions
control over user
sessions
multifactor
authentication is not possible
multifactor
authentication is possible
doesn't support cross
domain authentication
mechanism
Supports cross domain
authentication mechanism.
One credential
multiple logins to access
multiple applications
One credentials one
login to access multiple
applications
no control over
authorization
control over
authorization
Password recovery
feature is not available
Password recovery
feature is available
IP & Time based
authentication features are
not available
IP and Time based
authentication features are
available.
Authentication &
authorization audits & reports
are not available
Authentication &
authorization audits and
reports features can be
configurable.