Passlogix

(return to corporate profile)

Entrust Ready

v-GO Single Sign-On (SSO)

Passlogix is the maker of v-GO SSO, a desktop enterprise single sign-on solution that allows users to logon once to the desktop and then automatically log onto other applications (such as Microsoft Windows, Web, Terminal Services or GreenScreen).

Passlogix v-GO SSO takes any form of initial authentication, including passwords, digital IDs, smart cards, tokens or biometrics, and then seamlessly connects to mainframe, Microsoft Windows, Web or "homegrown" applications. Virtually out-of-the-box, without the need for connectors, it enables single sign-on from computers inside or outside the firewall, whether or not the computer is connected to a network. With v-GO SSO, organizations can reduce the use of multiple usernames/passwords, the possibility of weak passwords and multiple logons.

v-GO SSO and the Entrust Secure Identity Management Solution

Passlogix v-GO SSO is delivered and supported by Entrust as part of the Entrust Secure Identity Management Solution. Through tight integration with other solution components, such as Entrust Entelligence, Entrust USB Tokens, and Entrust GetAccess, organizations are able to rapidly deploy secure single sign-on to the desktop for all applications for which they are authorized. As with all components of the modular solution, it is available as a standalone purchase from Entrust or in combination with other products to address secure identity management needs.

As a key element of an organization’s identity and access management strategy, Passlogix and Entrust enable customers to:

  • rapidly deploy an enterprise SSO solution
  • enhance security by eliminating poor end-user password behavior
  • significantly reduce help desk costs resulting from password resets
  • simplify the end-user computing experience

    Benefits of v-GO SSO

    With v-GO SSO deployed, enterprise desktop users can enjoy the benefits of single sign-on to the network for easy and secure access to applications from wherever they are working.

    Ease of Integration

    • works out-of-the-box with most common Microsoft Windows applications, Web sites, and host emulators (whereas other single sign-on products require extensive and costly back-end integration)
    • helps an organization to rapidly implement single sign-on for more secure authentication of users and a short time to achieve ROI
    Enhanced Security
    • addresses one of the greatest security weakness in IT networks—poor password selection and management — and automatically applies password composition rules to generate more complex, secure passwords than employees would normally create
    • helps to protect against password theft and unauthorized access by allowing the network to utilize multiple, highly secure credentials while users only need to remember a primary password
    • encrypts user credentials at all times, which can be stored centrally, locally or on a smart card/USB token
    • helps organizations to meet stringent government security requirements or regulations such as HIPAA and GLBA. Like many Entrust security products, v-GO SSO is FIPS 140-2 compliant
    Proven Performance without Sacrificing Security
    • delivers uncompromising security and speed of deployment, lowering overall resource requirements and decreasing costs
    • reduces impact on network bandwidth with its small footprint, event-specific resource use, and record level processing
    • protects resources and credentials at all times – when stored in a directory, in transit, in local cache or in memory – and when a user signs-on to an application only the required credential is decrypted
    Extension of SSO for Secure Mobility
    • stores users’ encrypted credentials in a directory, network drive, smart card, or local hard drive for access from anywhere, anytime
    • enables users to securely access password-protected applications even when they are disconnected from the network
    • protects resources and credentials at all times, and only decrypting the required credential when a user signs-on to an application
    Fast ROI through increased productivity and reduced help desk costs
    • reduces lost productivity from time taken to recover forgotten passwords and training on complex, inefficient security policies
    • reduces help desk costs (typically 20%+ are password-related issues) and allows your organization to recover the cost of the software in months, not years
    • flexible design allows the single sign-on deployment to fit the network environment, security policies, user and financial requirements

    Get Technical

    Authentication Options

    Microsoft Windows Authentication Support:

    • Windows 95, 98, NT, 2000, XP or 2003
    • Windows roaming profiles for user mobility
    • MS Windows authenticator for certificates, biometrics, or tokens
    • Optional password change passphrase to protect against administrative breach
    • Optional integrated GINA for enhanced security
    LDAP Authentication Support:
    • Authentication from LDAP directories such as SunONE, eDirectory, etc.
    • Optional password change passphrase to protect against administrative breach
    PKI Authentication Support:
    • Uses PKI cryptographic services for key encryption
    • Strong Authentication
      • Biometric support for multiple vendors/devices including SAFLINK and NEC
      • Smart Card support for multiple vendors/devices through support for standard Windows cryptography interfaces (Microsoft CryptoAPI)
      • Entrust Entelligence and RSA Keon support for strong authentication
    Authentication Security:
    • v-GO SSO authentication engine relies on two independent factors that are only present at run-time and randomly encrypted during the session in memory
    • Credentials secured at all times in the directory, in transit, on the client and in memory; individual credentials decrypted on-the-fly as needed
    • Full FIPS 140-2 compliant MS CryptoAPI support for 3DES, AES and RC4 as well as for key generation and hashing services
    • Built-in security defenses protect against breach or inspection by other processes
    • All components digitally signed and run-time validated

    Minimum System Requirements

    SSO Client Agent

    • Microsoft® Windows® 95, 98, NT® 4.0 (SP 6a), 2000, XP or 2003 Server
    • 100 MHz Pentium processor
    • 64 MB RAM
    • ~2.5 MB for the installed program and data; a complete installation requires ~7 MB; ~25 MB available on hard disk for installer
    • Internet Explorer 5.5 SP2 or higher with 128-bit encryption
    • Citrix Metaframe support requires MetaFrame 1.8 or higher
    • Directory support requires Active Directory, Sun ONE Directory 5.1 or higher, eDirectory 8.5 or higher, or other LDAP v2/v3 compliant directory
    • Entrust PKI support requires Entrust/Entelligence v5.0 or higher
    • RSA Keon PKI support requires RSA Keon Desktop v5.5 or higher
    • Installation via MSI package requires Windows Installer 2.0 or space for it to be installed
    SSO Administrative Console
    • Microsoft® Windows® 98, NT® 4.0 (SP 6a), 2000, XP or 2003 Server
    • 100 Mhz Pentium processor
    • 64 MB RAM
    • .NET Framework 1.0
    • Windows Installer 2.0 or higher
    • ~4 MB for MSI installer; ~31 MB for EXE installer
    • ~15 MB for the installed program and data