Entrust Authority Security Manager

Frequently Asked Questions

  1. What is Entrust Authority™ Security Manager?
  2. How does Entrust Authority provide enhanced security management?
  3. Why should I use the Security Manager?
  4. Does the Security Manager interoperate with other PKI Networks?
  5. Is the Security Manager scalable to support millions of users?
  6. Is the Security Manager easy to administer and manage?
  7. What applications or solutions does Entrust Authority Security Manager provide security to?
  8. How does the Security Manager provide reduced security costs?
  9. What third-party validation has the Security Manager received?
  10. Does the Security Manager work with Microsoft Active Directory?
  11. What platforms does the Security Manager work on?
  1. What is Entrust Authority™ Security Manager? (top)

    Entrust Authority Security Manager is the backbone of Entrust’s identity and access management offerings. It is the public-key infrastructure (PKI) for an organization. Security Manager provides security management to applications in a consistent, transparent and automated way through:

    • issuance and lifecycle management of digital IDs for use across multiple applications and various Internet security operations
    • definition and enforcement of an organization’s security policy
    • automation of the administration of users and the application of security policy

  2. How does Entrust Authority provide enhanced security management? (top)

    Entrust provides enhanced security, which means that its PKI provides automated key and certificate management and key backup and recovery. In addition, the Security Manager provides security policy management within the enterprise and between other security networks. Administration and Registration Authority (RA) functions of Security Manager is provided through one interface for both RA and Directory operations

  3. Why should I use the Security Manager? (top)

    Security Manager provides enhanced security management which means that key and certificate lifecycle is automated, making it easier for administrators and end-users to use.

  4. Does Entrust Authority Security Manager interoperate with other PKI Networks? (top)

    Entrust Authority Security Manager offers the following PKI networking features:

    • supports certificate extensions used by Microsoft client-side PKI capabilities to allow easier deployment of Entrust certificates in Microsoft environments, facilitating optimal interoperability.
    • is able to take a CA root in the hierarchical trust model offline, enabling organizations to set up trusted trading groups in business-to-business relationships while maintaining maximum security for the CA root.
    • supports Active Directory on supported Windows® platforms, LDAP, and x.500 compliant Directories ensures that directories can be networked to allow for the retrieval of user certificates, cross-certificates and revocation information, thereby providing security, flexibility and potential cost savings.
    • supports hierarchical cross-certification, which is ideal within organizations where multiple CAs are needed and where one root CA can securely control all other CAs.
    • supports peer-to-peer cross-certification, which is ideal between organizations where each organization has secure control over its own organization and maximum flexibility to form relationships as business requirements dictate.

  5. Is the Security Manager scalable to support millions of users? (top)

    Yes, Entrust Authority Security Manager can support up to 25 Certification Authorities (CAs) on a single UNIX server and up to 10 million users, opening up access to ASP and ISP markets.

  6. Is the Security Manager easy to administer and manage? (top)

    Entrust Authority Security Manager is easier to administer and manage because administration and RA functions of the Security Manager is provided through one interface for both RA and Directory operations. In addition, the Security Manager provides automated certificate life-cycle management and key back up and recovery.

  7. What applications or solutions does Entrust Authority provide security management to? (top)

    Entrust Authority provides security management to enterprise, desktop, VPN and Web portal solutions.

  8. How does Entrust Authority Security Manager provide reduced security costs? (top)

    Security Manager provides flexible bulk user registration and user self-service enrollment. Self-service enrollment requires Entrust Authority Self-Administration Server. Since users do not have to perform cumbersome manual updates of the their security credentials, help desk calls can be reduced.

  9. What third-party validation has the Security Manager received? (top)

    The Security Manager goes through extensive external testing to verify it is delivering strong security deployments and standards-based interoperability. Entrust delivers this requirement with two important certifications:

    • Common Criteria (CC) evaluation level 4 (EAL 4+); and
    • FIPS PUB 140-1. Both certifications provide a strong endorsement of Entrust’s best in class enhanced security deployments.

  10. Does Entrust Authority™ Security Manager work with Microsoft Active Directory? (top)

    Yes, in addition to Entrust’s existing support for a wide range of LDAP and X.500 directories, Microsoft’s Active Directory is supported and can be used as the repository for user certificates. Entrust Authority also supports Active Directory Application Mode (ADAM).

  11. What platforms does Entrust Authority™ Security Manager work on? (top)

    Click here for the latest platform support information.

Contact Me about FAQs
White Papers