cyberelements Authentication & Identity Federation Solution
The single authentication for business performance
cyberelements Sigle Sign On | A unified vault for workstation authentication and application SSO across all user contexts.
cyberelements Single Sign On solution is an authentication and access management (AM) solution. It reinforces access to the user’s workstation with a secondary authentication factor, and automatically manages access to on-premise or cloud applications. User application accounts are securely stored in a centralized vault, with an individual local vault for managing access when disconnected from the organization’s VPN. The solution also provides complete traceability of both user and administrator access.
Customer story
Check out cyberelements’ Web Single Sign On
Learn how cyberelements.io delivers this next-gen Zero Trust Web SSO, enabling secure and seamless access to web administration consoles:
- No storage of secrets (tokens, keys, passwords, etc.) on the user’s side
- No need to communicate connection secrets
- No jump server required
- No specialized skills needed for SSO configuration
Authentication & Identity Federation Use Cases
Enhanced primary authentication
cyberelements offers various multi-factor authentication modes (cards, OTP, biometrics, eCPS). The platform provides a centralized management interface supporting most authentication methods.
Regulatory compliance
cyberelements provides authentication modes designed to ensure compliance with legal and industry-specific regulations. Our flexible solutions help you meet security requirements while securing user access and protecting sensitive data.
Apply and enforce a general password policy
Passwords, set by users, should be strong and compliant with your organization security policy. cyberelements offers a module that enforces Windows password complexity when users change their passwords, providing an instant visual indication of compliance with your security policy. Additionally, the solution manages the entire lifecycle of all user passwords, ensuring security and efficiency.
Simplify authentication by providing users with greater comfort and security
Securing application access should be effortless. cyberelements enables seamless automatic login to both workstation and web applications, enhancing security without disrupting user experience.
Uninterrupted User Access
cyberelements features a configurable local cache, allowing users to continue accessing their workstation and applications even when disconnected from the company network.
Secure and seamless access to shared workstation
Securing access to shared workstations is essential. cyberelements enables fast authentication and session unlocking. With a single action, users can authenticate with their card, unlock their Windows session, and launch one or more applications.
Access tracking
cyberelements offers auditing and reporting features that provide complete traceability of access by your users and the platform’s administrators.
Reduce Password Reset Requests with Self-Service Access
Your IT team or help desk handles a high volume of user password reset requests. cyberelements provides self-service features, allowing users to reset their passwords or regain access to their workstations independently.
Features
- Single sign-on authentication (Windows login + seamless access to applications)
- Interactive logon: Insert and remove the card, you’re authenticated. Insert it again, you’re logged out.
- Password renewal management (domain and applications)
- Centralized vault
- e-SSO to access all types of applications (Windows, Web…)
- Shared accounts, multi-accounts, account delegation
- Self-service :
- Password reset
- Access a worstation if you forget your card (or your second authentication factor)
- Card unlocking
- Mechanisms: Q&A, Challenge, OTP mail/sms/mobile app
- User self-registration: card, application password
- Accounts delegation with expiry period
- Local connection cache with configurable lifetime for network disconnected mode (eSSO, authentication, self-service)
- Client installed on managed workstations to ensure mobility with VPN access
- Centralized and enhanced password policy management
- Named user entreprise SSO access
- Removal of generic accounts and use of an individual account for each user
- Traceability audits: who logged on to which workstation, how, to what and using which account?
- Traceability of administrator actions: who did what?
- Authentication in healthcare sector via CPx / eCPS cards