ActiveIDentity Card Management System (CMS)

The solution of HID Global — ActivIdentity Card Management System (CMS) company is intended for creation of the highly protected systems of access restriction to computers, corporate networks and applications and also access control to premises at the enterprises numbering up to 10,000 staff. CMS is compatible to different operating systems, management systems for identification data and the ACS therefore it is quickly integrated into the existing IT infrastructure using the ActivIdentity 4TRESS AAA server supporting LDAP directories and databases of SQL type. At the same time protection of the computer against unauthorized access is based on technology of public keys of PKI, and accomplishment of cryptographic transactions is performed using the USB receivers connected to the PC of users, and smart cards of HID.

The ActiveIDentity Card Management System (CMS) system is effective and economic solution for restriction of physical and logical access (protection of the computer) in the large organizations, including government agencies, offices of the companies and the banking sector. ActiveIDentity CMS allows to depart from the traditional mechanisms of access control to the PC which are based on identification of users by the login and the password and minimizes problems of management of large and variable number of end users. Thanks to such system rather high degree of protection of the computer against unauthorized access is provided, and access to corporate data is limited.

Based on the Web interface it is possible to organize protection of corporate information against unauthorized access and management of personal data of users within local or Internet networks. Access for users to this interface is protected by ActivClient authentication system. Programming of the smart cards used in CMS is possible using OmniKey series HID devices. At the same time protection of the computer against unauthorized access and management of smart cards does not limit employees in accomplishment of a number of simple transactions: a change/unblocking of PIN, a card replacement request, record of new applets and PKI data (certificates), etc., reducing thereby time necessary for the administrator for system maintenance.

Implementation of ActiveIDentity CMS is low-cost both from the financial point of view and on time: the pilot installer is capable to set and start the system of protection of the computer in only 30 minutes. Setup of a system and protection of the computer against unauthorized access is performed using the special utilities entering into Card Management System. The combination in the system of logical and physical access also reduces its cost of ownership and allows to automate the system of admission to data that is the most important today for the big enterprises. Login can be performed on smart cards of ActiveIDentity which support a broad spectrum of technologies of authentication of users: from an input to the building, before access to the computer, in network and different applications.

The compatibility of the hardware and software system ActivIdentity with a large number of IT applications allows to unroll a system based on the technologies which are already implemented on an object. For protection of the computer and information the large number of directories, certification centers, including Microsoft CA, OpenTrust PKI, etc. and also control systems of access of companies Lenel, Honeywell, Tyco, etc., electronic payment systems, different types of smart cards and databases is supported. Using CMS the organization of logical access and protection of the computer against unauthorized access by its integration into already existing IT environment of the enterprise using the ActivIdentity 4TRESS AAA server is possible.

The comprehensive protection of the computer and data will be executed by the most effective at activation of the ActivIdentity CMS Appliance application using technologies of authentication using public keys (PKI). This application represents the system connecting public keys of enciphering with the identity of the user by means of the certification center (CC). Unlike solutions on the NaviGo platform, protection of the computer against unauthorized access using CMS Appliance is provided at higher level and also work with different applications among which the e-wallet, journey payment, etc. is supported.