SafeNet Authentication Service
April 01, 2016
Typical cost is £.71/user/month for enterprise volumes. Price discounts are available for larger volume of users as well as long-term contracts. This price includes user subscription, soft OTP Token, Push OTP token, SMS token, support and lifetime replacement of hardware tokens. There is an additional charge of £.21 per user per month for a hardware token. This price includes a lifetime replacement warranty.
- Ease of Use:
- Value for Money:
- Overall Rating:
- Strengths: Straightforward, SaaS implementation that shows thought and maturity. Easy to deploy and use with low help-desk overhead.
- Weaknesses: None.
- Verdict: This is a good choice for any size organisation, but its benefits will really shine in larger ones. If you are looking for solid strong authentication with a lot of deployment options in a simple to manage package, this has to get your attention.
SafeNet is one of those products that has been around a long time and its maturity shows. We have been watching the company for a long time. The Authentication Service is a good example of that experience and maturity. It is easy to set up, designed for large deployments and easy to use. SafeNet Authentication Service is a SaaS offering, but it can be set up on-premises if desired. However, it typically is deployed as a cloud service.
Authentication Service is built around a significant collection of automation workflows that allow administrators to manage thousands of users, even with limited administrator overhead. The company prides itself on its over 200 integrations leading it to claim - rightly so, we believe - that if it takes a username and password on a login screen they can add strong authentication to it. Their approach mixes a lot of choices with low help-desk requirements.
We looked at the SaaS version and the first thing that we noticed was the clean approach to menus. Since the first task is on-boarding new users we got a chance to see first-hand how the low support overhead works out. The workflows make a lot of difference and they are nicely integrated into the menu system. Because it is not uncommon for a user to access different levels of security - system administrators, for example - Authentication Service allows users to have multiple tokens.
Once the new user has started into the self-enrollment process, he or she creates a new token using MobilePASS. This allows him or her to create a token, give it a PIN and receive a first-time passcode. The first person to do this, obviously, must be the administrator or operator. Once the operator for the particular account is signed in for the first time, their next task is to add users. They can be added manually, automatically using a synch agent with, for example, Active Directory, or bulk loaded. If you bulk load you'll need to map fields so that whatever you are loading from matches the schema of the tool.
Once your users are loaded into the system they need tokens and that can be done automatically. You can set policies right from the dashboard and once the users are in the system and your policies are set your token goes out to the users by email. Additionally, there is a self-service portal that users can access to update their profiles, request tokens, reset PINs, resynch tokens and other tasks. This lightens the load on the help-desk materially.
As part of its integrations, the product offers SAML and RADIUS out of the box. This eases the integration with other products where you want to add strong authentication. We found the system easy to use and set up, very complete and well thought-out and organised. Reporting is excellent and when we asked about creating custom reports the answer was that with the 46 provided there is no need to. But if you want to alter reports you can on a one-time basis and you can only remove items. We found that a bit strange.
The website is excellent and it contains everything you need to make a buying decision and then support it after the fact. Everything is centralised, including logging and reporting. The user end works on just about any kind of mobile phone and you can customise such things as the self-service portal to brand it any way you want. Pricing is reasonable and there are multiple support options - including standard support - at no additional cost.
SC Webcasts UK
Information Security Manager
Infosec People - Hammersmith, West London
Junior Penetration Tester, Hertfordshire, to £35k + benefits
Infosec People - England, Hertfordshire
Cyber Security Architect
CYBER EXECS - London (Greater)
SOC Analyst, Aldershot, £47-56k + package
Infosec People - Hampshire, England, Aldershot
Senior Security Engineer
Loveworklife Recruitment - United Kingdom
Sign up to our newsletters
SC Magazine UK Articles
- Tesco Bank allegedly ignored warnings of hack from Visa
- Investigatory Powers and Digital Economy Bills could threaten economy
- Updated: A million German routers knocked offline by failed Mirai botnet attack
- Gooligan ad fraud malware infects 1.3M Android users, installs over 2M unwanted apps
- Microsoft update left Azure Linux virtual machines open to hacking
- SC Awards Europe 2016 winners announcements!
- ISIS radicalises 'lone wolves' through strong social media presence
- Updated: How will Brexit affect the cyber-security industry in UK and Europe?
- 9.2 million medical records for sale on darkweb
- Microsoft Office 365 hit with massive Cerber ransomware attack, report
- ICYMI: Tesco warned; IP Bill threatens economy; German routers offline; Azure trojan; Gooligan fraud
- Data centres are on the move - where will they end up?
- 90% of ITDMs believe IAM is crucial to digital transformation success
- Research: Hacked companies could see customer exodus if breached
- Misconfigured drive exposes locations of explosives used by oil industry