Imprivata OneSign Single Sign-On provides a single action of user authentication permitting users to access all workstations and applications they are authorized to use.  Password-related calls to the IT helpdesk are virtually eliminated by centrally managing each user’s complete collection of application passwords and extending seamless and convenient single sign-on to any enterprise application.

Imprivata OneSign Deploys quickly without interfering with existing IT infrastructure

All-in-one, appliance-based solution allows you to deploy in days, not months. OneSign Single Sign-On enables you to leverage your existing LDAP user directory without requiring modifications to your LDAP directory.

Imprivata OneSign has Built-in Support for Multiple Strong Authentication Options

Out-of-the-box support for a wide variety of strong authentication methods including finger biometrics, proximity cards, smart cards, one-time-password tokens and question and answer.  Strong authentication to the desktop or application is complemented by OneSign Secure Walk-Away, which automatically secures unattended computers from unauthorized access.

Imprivata OneSign Reduces password-related help desk calls

OneSign Single Sign-on enables the IT staff to rapidly enable any application for single sign-on without the need for scripting or changing the end user’s workflow. Manages password changes within applications and enforces application password strength policies. Policy options to allow end users to do Self-Service Password Reset and lookup their application credentials.

Imprivata OneSign streamlines access workflows for both local and remote applications and desktops

OneSign SSO offers various workflow solutions for shared workstations including fast user switching between multiple, concurrent Windows desktops, and secure fast user switching on top of a generic Windows desktop. OneSign SSO also supports all XenApp or Terminal Services-hosted applications to secure remote sessions and lock workstations when users roam to a different one.

Imprivata OneSign improves compliance and reporting efficiency with detailed visibility into user access activities

OneSign SSO records all application access events in a centralized database down to the application screen level. At the push of a button, administrators can run any number of reports that can identify users sharing passwords to mapping what applications users have access to and what credentials they are using.

Multifactor Authentication Partners

Imprivata can integrate with many types of mutlifactor authentication to further increase the security of the single sign on access control system.  The following two partners have direct links to Imprivata and have been deployed in UK based projects in both public and private sector customers.

 Swivel PINsafe is a tokenless multifactor authentication solution based on patented technology, offer a CCTM accredited, cost effective image, browser and voice based authentication.  Swivel PINsafe is relatively easy to deploy as it's a software based form of authentication and this technology has many advantages of traditional token based deployments as it can easily integrate into browser, image and voice based authentication mechanisms. Ask us for more details on Swivels integration with Imprivata as we've worked on a few projects of this nature and it's growing in popularity.

  VASCO is the leading supplier of strong authentication and e-signature solutions and services specializing in Internet Security applications and transactions. Vasco middleware is preinstalled on the Imprivata appliances and can be activated via a license purchase to aid a speedy integration.  Individual Vasco tokens are licensed to Imprivata and the middleware and subscriptions are bought each year, though please ask us for more details as there are several integration and purchasing options.   

Imprivata OneSign Datasheet

Compliance Standards

Requirement 2 Do not use vendor-supplied defaults for system passwords and other security parameters

Requirement 8 Assign a unique ID to each person with computer access

Requirement 9 Restrict physical access to cardholder data

GCSX No 6 Access Control

GCSX No 10 Mobile / Home Working

Imprivata Onesign Platform

Imprivata OneSign Single Sign-On is a module within the Imprivata OneSign Platform. Imprivata OneSign is an identity and access management platform that integrates user authentication, user access, password management and aggregated audit data in one secure and easy-to-manage appliance. Access control is simplified with centrally managed authentication and access policies that integrate physical and IT security across your entire organization—around the globe. Imprivata streamlines access through strong authentication options like biometrics, proximity cards, smart cards, one-time-password tokens—even physical locations—with the convenience of single sign-on.

Imprivata OneSign bridges the gap between end-user productivity and security. It’s built-in features support shared workstation workflows, enable One-Touch Desktop Roaming, solve unattended desktop problems and address transaction-level authentication.

With Imprivata, organizations can reduce the cost of demonstrating compliance with centralized, real-time tracking of employee access events. One-click reporting quickly identifies password sharing, what applications users are authorized to access, and what credentials they are using.

Imprivata OneSign is available as a physical or virtual appliance. Both options are non-invasive and seamlessly integrate with your existing IT infrastructure. No changes are required to user directories, applications or physical access control systems—nor are they required for additional staffing or specialized skills. Imprivata OneSign virtual appliances are formatted using the industry standard Open Virtualization Format (OVF). Heterogeneous enterprises can be deployed with both virtual and hardware OneSign appliances.