Identity Management

      


Description - click here for additional features

ACCOUNT GENEOUS is designed to simplify the tasks and greatly reduce the amount of time required for enterprise-wide User Account Administration across multiple platforms. It offers full web based user administration support for Windows servers, many UNIX flavors (including Linux), AS/400, OpenVMS and easy extensibility to any LDAP-compatible platforms. Due to its modular interfaces the system can integrate also with other applications.

Additionally, it allows the delegation of account administration to authorized personnel - with confidence and security. Each user of ACCOUNT GENEOUS operates within a framework of privilege limits defined by a “Security Profile” to control who can do what, on which systems, and even to which nominated end-user accounts.

Each operating system vendor normally provides a basic system manager application to manage end-user accounts, usually one at a time, and by users who need system privileges. These basic applications do not provide the refinement demanded by a professional environment in the enterprise.

When you switch to ACCOUNT GENEOUS you lose none of the functionality of the vendor’s own programs. What you gain is the experience of account management from many other companies.


Features - click here for additional features

ACCOUNT GENEOUS has been developed using platform-independent standards: Java and HTTP (web). It has a consistent look and feel across platforms. There is no need to learn multiple methods of account and application management.

It performs safe, highly specialized, operations on many platforms without requiring in depth technical knowledge from the Account Geneous operators, or any specific native administration rights on the target systems.

Account creation is (optionally) template driven. Templates contain pre-set information for user groups or account types on a platform-specific basis. Creating a new account for a user by applying a template is straightforward, requiring no platform specific knowledge. By using a template, the ACCOUNT GENEOUS user has only to enter a few key fields, such as Username.

It is fully extendible by using pre- and post- processing scripts (UNIX, Windows, OpenVMS etc). Customer-specific functionality, such as invoking sanity checks (pre-processing) or additional registrations (post-processing), can be easily integrated.

ACCOUNT GENEOUS performs essential management functions on multiple servers simultaneously. It creates multiple accounts on different platforms simultaneously with just a few keystrokes.

The system maintains links between an individual (e.g. employee) and computer accounts, using the optional Subscriber Database. External Human Resources databases (or directories) can be used for this task if they are available at the customer’s site.

It has a powerful user-configurable report generator. All the data sources within the system (archive, accounts cache, access profiles etc) can be combined to produce all kinds of reports about the status or history of the systems. For instance, the reports can be refined by operator / user / account field / time period / etc. When needed, a history of changes can be ‘tracked’ for an individual user account, and a previously archived user account can even be restored from the Archive database.

The ACCOUNT GENEOUS manager defines security profiles, which are then assigned to the ACCOUNT GENEOUS users. A security profile defines:

  • Machines which can be managed - for example the development systems.

  • Actions, which can be performed - for example account creation and deletion.

  • The fields and privileges, which can be modified - for example only standard privileges can be granted.

  • ACCOUNT GENEOUS is also able to manage application accounts like MS Exchange, and databases like Oracle and SQL Server. Support for platforms, such as SAP R/3, are planned for the next release.

click here for additional features


Web Identity Management with Single Sign-on (SSO)

ACCOUNT GENEOUS-SSO module: Single sign-on allows an enduser to access all his systems and applications, where he has access permissions, without the need to enter multiple passwords. The SSO module enables the enterprise to fully leverage the benefit of the Account Geneous solution and provides users with true single sign-on: with a single userid and password. Account Geneous-SSO is designed to take advantage of the Account Geneous infrastructure in order to minimise the overhead normally associated with a SSO implementation from other vendors. This module may be installed as an additional option when implementing Account Geneous


Web Password Management

Password Synchronization

Password Geneous-Sync (PGS) module: Password Synchronisation across multiple platforms and applications provides enhanced security and saves helpdesk costs. The same password is used for access to all platforms & all applications using best security policies & password changes are automatically propagated. Users no longer need to maintain lists of passwords. PGS does not require significant implementation work other than linking userids together according to editable mapping rules or to the subscriber-based mappings. This module may be installed on its own or implemented with Account Geneous.


Password self-Reset

Password Geneous-Reset (PGR) module: Password Reset software- user self-reset of passwords to enhance security and save help desk calls. Users can reset their passwords without helpdesk intervention in multi or single-platform environments. Resets are enabled via a browser-based self-help utility. This module may be installed on its own or implemented with Account Geneous.


Workflow:

Geneous is currently developing a more complex workflow module, based on the web services technology. This will make it BPEL compliant, and is being developed in close co-operation with customers to ensure functionality meets the requirements. The delivery date of BPEL workflow support is estimated H1 2005.


Hardware Requirements

Minimum requirements:

For the ACCOUNT GENEOUS server component: a machine able to run a Java Virtual Machine. Access to a CDROM drive will be required for installation.

Target (managed) systems include

  • Windows Servers: Intel Pentium III and above, or compatible.

  • OpenVMS: Any supported Digital/Compaq/HP VAX or ALPHA (AXP).

  • Tru64 UNIX: Any supported Digital/Compaq/HP ALPHA.

  • Solaris: Any supported Sparc based.

  • AIX: Any supported Power PC based.

  • HP-UX: Any supported HP PA-RISC.

  • Linux: Intel Pentium III and above, or compatible; multi-platform (please ask).


Software Pre-Requisites

  • Client (GUI): a browser, e.g. Mozilla/Firefox 1.0 or Internet Explorer 6.

  • Server and Targets: Java Virtual Machine 1.4

  • Operating systems for the server and target systems (resulting from the above JVM requirement):

    • Microsoft Windows 2000 SP3 or higher, Workstation or Server

    • OpenVMS Vax or Alpha Version 7.3 or higher

    • Compaq Tru64 5.1 and higher

    • HP-UX PA-Risc Version 11 and higher

    • Sun Solaris sparc 8 and higher

    • IBM AIX 5.1 and higher

    • Linux distribution based on Kernel 2.4 and higher

    • OS/400 V5R1 and higher

    • Oracle 9

    • MS SQL Server 2000

    • MS Exchange 2000

    • Lotus Notes 6

    • LDAP,ODBC etc. any application supporting a standard access interface. (simple configuration required).


PDF Downloads


GENEOUS SOFTWARE provides Identity Management (IdM and IAM) solutions to increase enterprise security with enhanced access control and improved efficiency. Authentication, role and rule based access control (RBAC), database and directory integration and reduction in helpdesk calls are all provided with the implementation of GENEOUS solutions. The ability to implement the solutions quickly in order to provide a rapid return on investment (ROI) is a fundamental part of the GENEOUS design. The scalability and ROI provided by Geneous solutions makes them ideal for enterprises from a few hundred employees to tens of thousands.

Windows XP (WindowsXP, WinXP, Win XP, WXP) windows NT (WindowsNT, WinNT, Win NT, WNT), Windows 2003 (Win 2003, Win2003, W2003), Windows .Net Server (Win .Net Server, Win.Net Server), Windows Server 2003 (Win Server 2003, WinServer 2003) Windows 2000 (Windows2000, W2K, Win 2K, Win2K, Win2000, Win 2000, W2000) Windows 98 (Windows98, Win98, Win 98), Vista

Mainframe, IBM OS/390 (os390, MVS, zSeries, z/OS, zos, z series, V2R10, V1R1, V1R2, V1R3, V1R4), VM, VSE, Linux, IBM OS/400 (os400, A/S 400, as400, iSeries, i series, AS/400, i5/OS V5R3, i5os) UNIX, IBM AIX (pSeries, p series), HP-UX (HPUX, HP UNIX), Sun Solaris, Compaq Tru64 (Tru 64), Novell Netware (Bindery, NDS), Linux, DEC VAX/VMS, Open VMS, OpenVMS, Oracle, SAP, MQ,

SSH server, SSH client, SFTP server, SFTP client, FTPS server, FTPS client, HTTPS, HTTP, FTP/S, solaris sparc solaris x86, mac osx, mac os x, mac 10, mac 9, Tandem, non stop, NonStop, HPUX Itanium HP-UX, PGP

TCP/IP (TCPIP), ODBC, FTP, Lotus Notes, Lotus Domino, Websphere, Apache Tomcat, BEA Web Logic (WebLogic), Tivoli Netview, Sun ONE Application Server, Microsoft .NET, SQL, LDAP, SQL Server, RACF (SecureWay Security Server), CA-ACF2, CA-Top Secret, Internet Explorer 6.x (IE6, IE 6), Internet Explorer 5.x (IE5, IE 5), Netscape 7.x, Netscape 6.x, Firefox, Mozilla, Opera

 

 Completing the jigsaw
with solutions from: