Simplifying SSO with Novell SecureLogin 7 … · The MarketScope is an evaluation of a marketplace...
Transcript of Simplifying SSO with Novell SecureLogin 7 … · The MarketScope is an evaluation of a marketplace...
Simplifying SSO with Novell® SecureLogin 7
Baber AminProduct Manager, Novell SecureLoginNovell, Inc.
Kevin PriorTechnical SpecialistNovell, Inc.
© Novell, Inc. All rights reserved.2
The Problem: Password Proliferation
More and more applications requiring a password
© Novell, Inc. All rights reserved.3
The Problem: Password Proliferation
jj122johnnyj294********johnnyjohnjohn
jjohnson077
johnny_thegolfer413johnmeister_192
******
**************************************************************** ****************
bigjohn_92
jjohnson077************jjj_021john_Johnson_45**** ****
st.john_140
Users have too many credentials to remember
More and more applications requiring a password
© Novell, Inc. All rights reserved.4
The Problem: Password Proliferation
jj122johnnyj294********johnnyjohnjohn
jjohnson077
johnny_thegolfer413johnmeister_192
******
**************************************************************** ****************
bigjohn_92
jjohnson077************jjj_021john_Johnson_45**** ****
st.john_140
Users have too many credentials to remember
Do they write them down? What about security?
More and more applications requiring a password
How manypasswordsdo you have?
© Novell, Inc. All rights reserved.5
The Problem: Password Proliferation
Productivity The helpdesk spends too much time on password resets, while end users sit idle.
jj122johnnyj294********johnnyjohnjohn
jjohnson077
johnny_thegolfer413johnmeister_192
******
**************************************************************** ****************
bigjohn_92
jjohnson077************jjj_021john_Johnson_45**** ****
st.john_140
Users have too many credentials to remember
Write them down? What about security?
More and more applications requiring a password
How manypasswordsdo you have?
© Novell, Inc. All rights reserved.6
The Problem: Password Proliferation
Productivity The helpdesk spends too much time on password resets, while end users sit idle.
Cost Password-related calls to the helpdesk cost between $10 and $25 each.
jj122johnnyj294********johnnyjohnjohn
jjohnson077
johnny_thegolfer413johnmeister_192
******
**************************************************************** ****************
bigjohn_92
jjohnson077************jjj_021john_Johnson_45**** ****
st.john_140
Users have too many credentials to remember
Write them down? What about security?
More and more applications requiring a password
How manypasswordsdo you have?
© Novell, Inc. All rights reserved.7
The Problem: Password Proliferation
Productivity The helpdesk spends too much time on password resets, while end users sit idle.
Cost Password-related calls to the helpdesk cost between $10 and $25 each.
Security Users take unsafe measures to remember passwords. Can you afford a $6.6 million security breach?
jj122johnnyj294********johnnyjohnjohn
jjohnson077
johnny_thegolfer413johnmeister_192
******
**************************************************************** ****************
bigjohn_92
jjohnson077************jjj_021john_Johnson_45**** ****
st.john_140
Users have too many credentials to remember
Write them down? What about security?
More and more applications requiring a password
How manypasswordsdo you have?
© Novell, Inc. All rights reserved.8
Productivity The helpdesk spends too much time on password resets, while end users sit idle.
Cost Password-related calls to the helpdesk cost between $10 and $25 each.
Security Users take unsafe measures to remember passwords. Can you afford a $6.6 million security breach?
Legal / Audit & Compliance Pathway to regulatory compliance
The Problem: Password Proliferation
jj122johnnyj294********johnnyjohnjohn
jjohnson077
johnny_thegolfer413johnmeister_192
******
**************************************************************** ****************
bigjohn_92
jjohnson077************jjj_021john_Johnson_45**** ****
st.john_140
Users have too many credentials to remember
Write them down? What about security?
More and more applications requiring a password
How manypasswordsdo you have?
© Novell, Inc. All rights reserved.9
Enterprise Single Sign-on
User Workstation
ESSO Technology
SAPSAP
MainframeMainframe
Win32Win32
NOS
Password:123456
Password:john077
Password:carpediem09
Password:surferdude85
GmailGmail
Password:jj2500
Partner AppPartner App
Password:acme01
© Novell, Inc. All rights reserved.10
Deployment Challenges
Dialog Class #32770 Title "Logon"EndDialog setprompt "Username: " Type $Username #1001 setprompt "Password: " Type $Password #1002 setprompt "Location: " Type $Optional #1003 Click #1
Dialog Class #32770 Title "Change Password"EndDialog Type "$Password" #1004 ChangePassword ?newpassword
GetUrl ?URLGetText ?TextIf "logout=true" -In ?URL EndScriptEndIf If "Login.jsf" -In ?URL If "Username: " -In ?Text If "Password: " -In ?Text type $Username #1 type $Password #2 Click #1 EndIf EndIfEndIf
© Novell, Inc. All rights reserved.11
Novell® SecureLogin 7
Market's most comprehensive integration wizard generates the scripting for you
Enable single sign-on to Windows*, Web, Java*, terminal and enterprise applications
Enhance security with strong passwords and advanced authentication
Improve end-user and IT productivity
Reduce costs related to password resets
Leverage your existing IT investments
Support regulatory compliance efforts
Deliver a quick win
Key Features
© Novell, Inc. All rights reserved.13
Key Features• Simple user interface
• Market-leading integration wizard • Consistent user experience • Supports multi-factor authentication • Shared workstation support • Fault tolerant • Flexible deployment
© Novell, Inc. All rights reserved.14
New in Novell® SecureLogin 7
• Integration Wizard–Expanded application support–Improved graphical user interface–Drastically simplifies implementation
• 64-bit support–Microsoft* Windows* Vista SP1 –Microsoft Windows Server 2003 –Microsoft Windows Server 2008 –Citrix* Clients
© Novell, Inc. All rights reserved.15
How it WorksCapture and Replay
Novell SecureLogin:
• Captures and securely stores user credentials
• Passes credentials to the target application
• Is not the same as password synchronization
• Doesn't require changes to the application
• Supports a broad range of applications> Windows*> Web> Java*> Citrix*/ Terminal Servers> Host-based/ Terminal Emulators
Novell® SecureLogin Architecture
© Novell, Inc. All rights reserved.17
Novell® SecureLogin ArchitectureDirectory-enabled Architecture Strengths
• Works seamlessly with your directory infrastructure–Novell eDirectory™
–Microsoft* Active Directory–Any v3-compliant LDAP directory• Minimal changes to the directory schema• Prevents single point of failure in your deployment• Users can log in to any network computer and realize the SSO experience• User can login and logout quickly• User can work in disconnected mode and still leverage SSO for logging into applications
© Novell, Inc. All rights reserved.18
Novell® SecureLogin ArchitectureNovell eDirectory™
SSO
+
+
SharedDesktop
DAS
Strong Authentication
Novell Client
EnterpriseDesktop
TerminalServices
NovellSecureLogin
Enterprise Systems
Application A
Application B
Application C
SecretStore™NovelleDirectory
AuditServer
ReportDatabase
Optional Add-on
© Novell, Inc. All rights reserved.19
Novell® SecureLogin Architecture Microsoft Active Directory
SSO
+
MS Client
ActiveDirectory
+
SharedDesktop
DAS
Strong Authentication
EnterpriseDesktop
TerminalServices
NovellSecureLogin
Enterprise Systems
Application A
Application B
Application C
AuditServer
ReportDatabase
Optional Add-on
© Novell, Inc. All rights reserved.20
Novell® SecureLogin Architecture Other LDAP Directories
SSO
LDAP V3Directory
MS Client
SharedDesktop
DASEnterpriseDesktop
TerminalServices
NovellSecureLogin
Enterprise Systems
Application A
Application B
Application C
AuditServer
ReportDatabase
Optional Add-on
+
Demo
© Novell, Inc. All rights reserved.22
Novell® SecureLogin Strengths
• Mature and proven technology
• Delivers the market's most comprehensive integration wizard
• Handles much more than just passwords
• Centrally managed and administered
• No extra hardware required
© Novell, Inc. All rights reserved.23
Novell® SecureLogin Strengths
• Choice of strong authentication devices
• Supports LAN, Web, thin client, VPN or mobile users
• No application changes or modules required on application servers
• True interoperability
• Non-intrusive, rapid deployment
Quantifying the Benefits
© Novell, Inc. All rights reserved.25
Return on Investment
Benefits Monthly YearlyRecurring Help desk $36,667 $440,000
IT administration and audit $25,750 $309,000Total $62,417 $749,000
CostsInitial costs Total (licensing) $350,000
Recurring costs Ongoing administration 2 hours/ month $1,800Annual maintenance 25.00% $87,500
18.00% $5,760Total $95,060
ROI Year 1 Year 2 Year 3 Total PVTotal Benefits $749,000 $749,000 $749,000 $2,247,000 $1,862,652
Total Costs $445,060 $95,060 $95,060 $635,180 $554,582Net Yearly Savings $303,940 $653,940 $653,940Total Net Savings $957,880 $1,611,820 $1,611,820 $1,308,070
Payback Period (months) 8.16Return on Investment (ROI) 236%
© Novell, Inc. All rights reserved.26
Strong Positive RatingEnterprise Single Sign-on
The MarketScope is copyrighted 2009 by Gartner, Inc. and is reused with permission. The MarketScope is an evaluation of a marketplace at and for a specific time period. It depicts Gartner's analysis of how certain vendors measure against criteria for that marketplace, as defined by Gartner. Gartner does not endorse any vendor, product or service depicted in the MarketScope, and does not advise technology users to select only those vendors with the highest rating. Gartner disclaims all warranties, express or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose. The MarketScope graphic was published by Gartner, Inc. as part of a larger research note and should be evaluated in the context of the entire report. The Gartner report is available upon request from Novell.
Source: Gartner, Inc. “MarketScope for Enterprise Single Sign-on.” Gregg Kreizman.
Summary
© Novell, Inc. All rights reserved.28
Benefits
Lower costs by reducing password-related calls to the helpdesk
Mitigate security risks by strengthening passwords and password policies, and by eliminating security loopholes
Support compliance with government and industry regulations, and internal policies
Increase productivity by allowing IT and end users to focus on more strategic projects rather than worrying about passwords
Leverage existing investments through tight integration and interoperability
© Novell, Inc. All rights reserved.29
Take Advantage of Special Offers
Price Promotion• Get a perpetual license plus 1 year of maintenance for
$30 per user. (Offer ends December 31, 2009)
Free Deployment• Purchase 2,500 new licenses of Novell SecureLogin
and we'll help you integrate it with up to 5 applications in your environment—for free! (Offer ends October, 31, 2009)
www.novell.com/essopromo.html
© Novell, Inc. All rights reserved.30
www.novell.com/securelogin
For more information, please visit:
Unpublished Work of Novell, Inc. All Rights Reserved.This work is an unpublished work and contains confidential, proprietary, and trade secret information of Novell, Inc. Access to this work is restricted to Novell employees who have a need to know to perform tasks within the scope of their assignments. No part of this work may be practiced, performed, copied, distributed, revised, modified, translated, abridged, condensed, expanded, collected, or adapted without the prior written consent of Novell, Inc. Any use or exploitation of this work without authorization could subject the perpetrator to criminal and civil liability.
General DisclaimerThis document is not to be construed as a promise by any participating company to develop, deliver, or market a product. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. Novell, Inc. makes no representations or warranties with respect to the contents of this document, and specifically disclaims any express or implied warranties of merchantability or fitness for any particular purpose. The development, release, and timing of features or functionality described for Novell products remains at the sole discretion of Novell. Further, Novell, Inc. reserves the right to revise this document and to make changes to its content, at any time, without obligation to notify any person or entity of such revisions or changes. All Novell marks referenced in this presentation are trademarks or registered trademarks of Novell, Inc. in the United States and other countries. All third-party trademarks are the property of their respective owners.