Indeed CM Indeed Certificate Manager

Indeed Certificate Manager (before Indeed Card Manager) is the system of centralized operation lifecycle and control of digital certificates, tokens and smart cards.

2018

Indeed Certificate Manager 5.1

On November 27, 2018 the Indid company reported that it prepared updating for a management system for smart cards and the digital certificates Indeed Certificate Manager. According to the company, in it combined as further development of instruments of thin setup of the system, and expanded abilities to integrate with products of Microsoft companies (Active Directory) and Crypto Pro.

The role model allows to personalize a set of privileges for each administrator and the operator under each policy of usage of devices.

Privilege

Roles can be global (the structure of a role is defined for all the politician) and local (the structure of a role is defined for each policy separately). Own organization structure of the Indeed CM system is applied to consolidation under action of one policy of the users who are in different OU within the Active Directory directory or Crypto Pro of UTs 2.0.

Local role

On a screenshot the example when users of OU "MOSCOW TIME Office", the Cert Publishers groups and personally Evgeny Belov of the Active Directory directory are joint within one policy of usage of devices which affects an object of organizational structure "Child site 1.1" is given.

Child site 1.1

Integration with Crypto Pro of DSS with opportunities is added:

• Creation of the user of Crypto Pro of DSS
• Release of certificates
• Installation of a user password of Crypto Pro of DSS

Reset of a user password of the Active Directory

Reset of the password

After the expiration the domain password will be reset on accidental value by means of Indeed CM and for users the smart card with key information will remain the only way of authentication.

Setup of the messages displayed to the user at execution of operations by the client agent are transferred to policies of usage of devices.

Setup of messages

Other changes which entered release:

• Restriction of release of the certificate for a certain type of the carrier within policy of usage of devices;
• Search of devices in policy of usage of devices;
• An opportunity to change properties of appointment the politician (a container, group, a priority);
• Possibility of initialization of the card at the time of its withdrawal.

Tasks

For October, 2018 the system of centralized operation by lifecycle of key Indeed Card Manager carriers (Indeed Card Management) allows to solve the following problems:

• Management of lifecycle of key carriers
• Accounting of the CIPF used at the enterprise
• Journalizing and audit of actions of administrators and users with key carriers
• Process automation of management of certificates of users
• Backup of key information
• Providing self-service to employees of the mechanism for the operational solution of the main objectives of use of key carriers

Indeed Card Management Release 4.8

From the moment of the last publication about Indeed Card Management there passed not one month, but all this time work on a management system for lifecycle of smart cards did not stop. And now we in brief will tell about all significant changes.

For March, 2018 in a system following features are implemented:

• Support of all modern browsers: Mozilla Firefox Google Chrome Microsoft Edge, Internet Explorer 10 and 11. In all listed browsers all set of transactions with key carriers is supported.
• Now more granular control of the rights to access to a system due to appearance of administrators and operators separate the politician is possible.
• Support of the publication of certificates in an application base of CFT.
• Function of tracking of certificates supports the certificates issued on ViPNet CA certification center now.
• The sign of non-obligation for the general certificates (pfx) is added.
• Possibility of simultaneous operation with different types of the user directories: Active Directory and Crypto Pro of UTs 2.0.
• An opportunity to filter cards in a repository on the expiring certificates.
• Sending a user comment as a part of a certificate request for Crypto Pro of UTs 2.0.
• Initialization of devices at an output from the Indeed CM system.

2017

Integration with Solar inRights and Indeed Enterprise SSO

On August 9 the companies Solar Security also Indeed Identity announced development of the joint integration solution integrating possibilities of the IGA-platform (Identity Governance and Administration) Solar inRights, the system of a uniform input Indeed Enterprise SSO and an infrastructure management system of public keys of Indeed Card Management. The solution increases level information security and saves human resources in the company due to process automation, access rights connected with providing and management of lifecycle of passwords of users. In more detail about an event it is possible to read here.

Integration with Krypto-PRO of DSS

On March 31, 2017 the companies Indid also Crypto Pro announced integration Crypto Pro of DSS and the PKI Indeed Card Management systems.

After integration of products, transactions of creation, updating and destruction of keys and certificates of the cloud electronic signature on the basis of Crypto Pro of DSS can be executed of^[1].

Integration of two systems allows to create a uniform point of key management of all types of the electronic signature: traditional option with the key carrier and modern cloud implementation.

Use of Indeed Card Management for release of EDS certificates gives the chance of the centralized control over use of the EDS keys. Certificates are issued on the basis of preconfigured the politician, a system notifies users and administrators on the actions influencing lifecycle of certificates. If necessary, users can turn on service of self-service where will be able independently to release or request required certificates.

Crypto Pro of DSS allows to solve traditional problems of hardware key carriers, such as organization of logistics and control of use. Integration with Indeed CM increases efficiency of implementation and use of the cloud electronic signature in corporate systems due to process automation of key management of the EDS, and, if necessary, gives the chance of soft junction from use of individual key carriers on Crypto Pro of DSS. Igor Kurepkin, deputy CEO of Crypto Pro

Crypto Pro of DSS implements the model of the electronic signature which was extremely demanded for March 31, 2017 - cloud. Application of cloud computing allows business to work more effectively, not only increasing convenience of using of difficult technologies, but also allowing to save the budget of IT on routine tasks. Integration with technologies of Crypto Pro of DSS does Indeed CM by a universal central management system and control of use of digital certificates. Alexey Baranov, CEO of Indid company

2016: Indeed Card Management Release 3.4

The Indid company announced in May, 2016 a release of the version of a system of centralized operation by lifecycle of key Indeed Card Management 3.4 carriers which among other included the changes relevant for the companies which are at a stage of large-scale implementation of infrastructure of PKI.

In particular, in this version the possibility of package release of smart cards together with the printer of smart cards of EDIsecure XID 8300 is implemented. It is enough to system administrator to define a user group which need to issue cards, to place the necessary number of cards in a tray of the printer and to start process of mass release as a result of which users will receive the smart cards, completely ready to use, containing necessary key data and personal information of employees: Full name, position, division, photo and so forth.

Integration from a HSS of "Crypto Pro of UTs 1.5" and a HSS of "Crypto Pro of UTs 2.0" is expanded. Now the new user automatically is registered in the UTs directory, and the user account Indeed CM automatically contacts already existing account in the UTs directory.

The scenario of adding of such attributes of the user as the Insurance Number of Individual Ledger Account, TIN, PSRN, etc., is complemented with a possibility of installation of compliance of attributes of the user of the Active Directory with attributes "Crypto Pro of UTs".

Process of interaction with the directory of users of Indeed CM was expanded function of automatic switching off of smart cards for users whose accounts for any reasons are suspended by the administrator of the Active Directory.

For integration with the systems of the class IDM (Identity Management System) in this version of a system Web API allowing to obtain information on cards of the user and to execute with them a number of transactions is added: inclusion, switching off, preliminary updating, withdrawal of the card and so forth.

For convenience of a configuration of parameters of a system the new tool "Indeed CM Setup Wizard" is added to structure of a distribution kit.

2015

Indeed Card Management Release 3.0

On June 2, 2015 the Indid company announced an exit of release 3.0 of the version of a system of centralized operation by lifecycle of key Indeed Card Management carriers.

In this version the company implemented support of devices of Rutoken ETsP SC, Rutoken of Lite SC, Kaztoken SC.

Rutoken of the EDS, 2014

A system provides card issue with the certificates issued by Crypto Pro of UTs Certification Center of version 2.0. It does possible use of a system in the infrastrustruktura which are not using the domains Active Directory.

In this version of a system, within one policy of usage of smart cards, a different set of certificates can be issued. The decision on inclusion of "optional" certificates in the list of required is made by the operator of a system or the user, by means of service of self-service.

During release the PIN code of the user can be changed by a system to accidental and is directed to the user or his head to e-mail through the protected connection that excludes a possibility of use of keys by third parties including the operator of a system who is releasing a smart card or an USB token.

Among additional opportunities - automatic assignment of a name to smart cards and an USB token. Rules of formation of a name are defined according to the set policy.

Indeed Card Manager. Description

For May, 2015 Indeed Card Manager is the system of centralized operation by lifecycle of key carriers (smart cards, tokens and so forth).

The modern companies use technologies of the electronic digital signature, strict authentication of users and data encryption more and more widely. These technologies require presence at employees of personal carriers of key information: usb of keys or smart cards. It generates a new range of tasks of accounting and control of use of such carriers.

The modern companies use technologies of the electronic digital signature, strict authentication of users and data encryption more and more widely. These technologies require presence at employees of personal carriers of key information: usb of keys or smart cards. It generates a new range of tasks of accounting and control of use of such carriers.

When developing Indeed CM advanced technologies and orientation to tasks of users of a system are used. It allows to provide to all participants of process the convenient and effective mechanism of interaction with a system. Indeed CM Web Application has the modern, user-friendly and functional user interface which adapts to the user's device. Thanks to it with a system it is equally convenient to work both on the personal computer, and on the tablet or the smartphone.

Tasks

A system solves all necessary problems connected using a public key infrastructure (Public Key Infrastructure, PKI) in enterprise scales:

• management of lifecycle of key carriers
• accounting of the CIPF used at the enterprise
• journalizing and audit of actions of administrators and users with key carriers
• process automation of management of certificates of users
• backup of key information
• providing self-service to employees of the mechanism for the operational solution of the main objectives of use of key carriers