Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

OPSEC Partners

eProvision Day One

Product Version Certified: 1.1 for Windows NT
Certified for use with: Check Point Next Generation and Check Point 2000
 
Product Description: eProvision Day One solves the challenge of handling employee management, by automating IT activities associated with employee movement, including automatic provisioning of VPN-1/FireWall-1 access rights for new employees and revocation upon departures.
 
Key Features and Benefits
OPSEC Integration 		Business Layers
Company Description: Netegrity is a provider of Directory-based eProvisioning Solutions that streamline the allocation of digital resources. Netegrity' solutions facilitate the systematic provisioning of IT services across networks based on business requirements.
Key Features and Benefits

eProvision Day One, solves the challenge of handling employees, partners and customers by streamlining and automating the associated IT activities. eProvision Day One automates the creation of a new employee's " IT profile" and allocating the IT resources required by new employees to do their job. When an employee leaves the company, eProvision Day One ensures that the employee is "out of the system" immediately, by disabling access to IT resources, all in a structured and documented way.

The OPSEC integrated solution applies the above to VPN-1/FireWall-1.

  • Upon joining the company, a new employee is granted with a role-based security policy within the VPN-1/FireWall-1.
  • Upon changing roles, Day One automatically updates access rights to reflect the new role.
  • Upon leaving the company, Day One automatically revokes FireWall-1/VPN-1 access rights.
  • This process can be trigged from an existing HR/CRM application, allowing a hands-off provisioning solution.
  • The solution can work in a bulk mode, allowing provisioning projects for large number of employees.
  • The process is managed by a web-based workflow, allowing approval and escalation procedures to take place.
  • All changes are logged into the FireWall-1 log database using ELA.
  • A set of reports provides a clear understanding of which users have FireWall-1/VPN-1 accounts, who approved it, and what was the business trigger.

eProvision Day One is a perfect solution for companies and service providers wishing to manage, streamline and automate the provisioning of IT resources to employees, partners and customers.

OPSEC Integration
eProvision Day One integrated with FireWall-1/VPN-1 dramatically reduces the workload associated with provisioning of access policies to users. In addition eProvision Day One improves the overall enterprise security by ensuring the VPN-1/FireWall-1 users are always configured to reflect the organizations status and personal. Once deployed, administration of FireWall-1/VPN-1 accounts becomes extremely easy: An HR event is intercepted by Day One, which updates the security policy for the employee accordingly. The Security Administrator clicks on approve and the FireWall-1/VPN-1 user database in the ldap directory is updated automatically and a message is sent to FireWall-1 log using ELA.