Strengths: Easy-to-deploy redundant pair for user and authentication management
Weaknesses: Pricey considering it does not do provisioning
Verdict: A solid product that, combined with a provisioning system, creates a good ID management infrastructure
Convergence is the best word to sum up this appliance-based offering. Imprivata OneSign brings together three pieces of identity management. The first is authentication management, which replaces Windows-based authentication with stronger methods that can be managed in one place. Next is single sign-on, which is implemented for all legacy, client/server, Windows, Java and web applications in an easy and efficient manner. The final piece is physical/logical, an interesting feature that can integrate network and building access systems to provide a single consolidated user identity based on specific policies.
We found this product fairly simple to deploy and manage. The appliances are shipped as a redundant pair and, once the machines were booted, we were able to configure both the primary and secondary box through an easy-to-follow, web-based wizard. Once the initial setup is complete, things start to get a bit more complicated. The web GUI, while quite intuitive to navigate, leaves something to be desired when it comes to actually doing something with it. It took us some time to get used to the way the initial policy and assign applications are set up. However, this did get a bit simpler with use.
The Imprivata OneSign platform is designed to work with existing user provisioning systems, so it does not do provisioning itself. It does, however, add some great functionality to the identity management infrastructure. This is also designed to integrate into a user directory store such as Active Directory and pull user information.
Documentation is on the heavy side. The pack includes getting-started guides, user guides, appliance guides and administration guides in paper and PDF form. All were well organised and quite helpful.
Support is offered in two flavours, basic and premium. Both include varying degrees of phone, email, and web technical support as well as access to the online customer centre with its downloads and knowledge base.
We find this product average value for money. Starting at £35 per user for the whole suite, it can become a pricey investment, especially since it has to rely on other systems for provisioning. If identity management as a whole is what you are after, this could leave some functionality gaps.