OPSEC Partners

RSA Authentication Manager

Product Version Certified: ACE 5.x, Authentication Manager 6.x, Key FOB, PIN Pad, Software Token
Certified for use with: Check Point NG/NGX, Check Point 2000, Check Point Connectra and SSL Network Extender.

Product Description: RSA Authentication Manager software is the management component of the RSA SecurID solution, used to verify authentication requests and centrally administer authentication policies for enterprise networks. As the premier enterprise-class security solution, RSA Authentication Manager software scales to the needs of any size network and is capable of authenticating millions of users, protecting remote access, VPN and e-businessapplications across the enterprise. RSA Authentication Manager software is also interoperable with more network, remote access, VPN, Internet and application solutions than anyother system available today.


Key Features and Benefits OPSEC Integration Additional Information

Company Description: RSA Security, the most trusted name in e-security, helps organizations build secure, trusted foundations for e-business through its two-factor authentication, access management, encryption and digital signature solutions. RSA Security has the market reach, proven leadership and unrivaled technical and systems experience to address the changing security needs of e-business and bring trust to the new online economy.

RSA Security is a truly global e-security provider with major offices in the US, Ireland, United Kingdom, Singapore and Tokyo, and representation in nearly 50 countries with additional international expansion underway. The RSA SecurWorld channel program brings RSA Security's products to value-added resellers and distributors worldwide, including locations in Europe, the Middle East, Africa, the Americas and Asia-Pacific.

Key Features and Benefits

Key features of the Authentication Manager software :

Powers the authentication of more than 10 million RSA SecurID end users worldwide
Supports millions of users per server
Offers high-performance and scalability with database replication
Provides centralized, easy and cost-effective administration.
Interoperable with more than 240 networking products/applications from more than 150 vendors
Web-based (5.0 only) or console-based administration
RSA Authentication Manager 5.0 supports a primary server and up to 10 replica per realm - and up to 20 realms. This new level of redundancy not only guarantees availability, but also allows customers to plan efficient, economic global network topologies.

OPSEC Integration

RSA Authentication Manager integrates into the OPSEC family by easily integrating with authentication mechanisms built in to the Check Point product family.

Check Point FireWall-1 : Supports direct communication with an RSA Authentication Manager for authenticating users via user, session or client authentication. SecurID-based authentication also interoperates with RADIUS or TACACS+ communication with an Authentication Manager. The following methods all support SecurID 2-Factor authentication:
1. User Authentication User authentication allows an administrator to grant access privileges on a per user basis, without regard to the user's IP source.
2. Client Authentication Client Authentication allows an administrator to grant access to a specific user at a specific source.
3. Session Authentication Session authentication is used to authenticate any service on a per-session basis (additional client required).
Check Point SecureClient and SecuRemote : SecurID login works directly from within the Check Point client, without the need for extra software on client computers.
Check Point VPN-1: Supports native communication with an Authentication Manager for robust and secure authentication of SecurID users, using IKE, FWZ or Hybrid-mode IKE.

Additional Information

Online Tutorial
White Paper: The Power Behind RSA SecurID Two-Factor Authentication [PDF 107MB]
WhitePaper : Better Value for a Better ROI [PDF 182k]