This document summarizes the problems users experience when managing too many passwords. It describes the various approaches available to organizations to reduce the password burden on users and to improve the security of their authentication systems. Given this background information, this document goes on to describe the basic architecture of traditional enterprise single sign-on (E-SSO) systems. It describes their strengths, along with their security, usability and cost issues. Finally, a new approach is presented, to deliver most of the same advantages of a traditional E-SSO system but without any of the traditional issues. The new approach replaces a database of stored passwords with a password synchronization process. This is the approach embedded in Hitachi ID Login Manager. http://hitachi-id.com/

Organizations that are either considering deployment of Hitachi ID Password Manager or have already deployed it need to understand how to secure the Password Manager server. Password Manager is a sensitive part of an organization’s IT infrastructure and consequently must be defended by strong security measures. This document is intended to form the basis of a “best practices” guide for securing a Password Manager server. The objective of a secure Password Manager server is to have a reliable, high availability server which is difficult or impossible for users and intruders to compromise. http://hitachi-id.com/

Outlines best practices for designing, installing and rolling out Password Manager to an enterprise-scale user population. http://hitachi-id.com/

As users access ever more systems and applications, they accumulate passwords and other authentication factors. Complexity that arises in managing multiple login technologies leads to IT support and security problems: high help desk call volumes, written passwords, lost or stolen OTP tokens and smart cards, etc. Effective password management addresses these problems by helping users to manage all of their authentication factors in an integrated manner. Passwords are synchronized, so there are fewer to remember. Self-service allows users to reset their own forgotten or locked out passwords or PINs and unlock PCs with encrypted disks. A single process is used to enroll security questions, mobile phone numbers and biometric samples. The entire solution is made available from full screen or mobile phone web browsers, phone calls or PC login screens. http://hitachi-id.com/

Introduction to the business challenges of securely managing access to privileged accounts and the technical approaches available to secure administrator, service and application-to-application IDs. http://hitachi-id.com/

Managing Active Directory security. Hitachi ID Group Manager moves the responsibility for managing Active Directory groups from IT to users. It lowers IT costs and improves user service by intercepting user attempts to access network resources and redirecting users without appropriate access rights to a web portal where they request appropriate group memberships. http://hitachi-id.com/

Integrated credential management for users: passwords, encryption keys, tokens, smart cards and more. http://hitachi-id.com/

Kickstart an IAM program with discovery of business and IT requirements. http://hitachi-id.com/