Product Description

The Identity Assurance Client contains the software needed to install and configure a workstation for use with the Identity Assurance Solution. The Novell Enhanced Smart Card Method (NESCM) is bundled with the Identity Assurance Client CD and it provides smart card-based authentication for eDirectory. NESCM can be used as a standalone eDirectory authentication method outside of the Identity Assurance Solution. To obtain the method for use in a standalone environment, purchase the Identity Assurance Solution Client

The Identity Assurance Solution enables federal agencies to comply with the credential issuance, physical and logical access requirements of Homeland Security Presidential Directive 12 (HSPD-12). This solution provides convenient yet controlled access to disparate logical IT systems and physical facilities by using combinations of biometrics, passwords, personal identification numbers, smart cards, X.509 digital certificates, and other forms of advanced authentication. It is fully integrated with Novell Identity Manager and meets FIPS 201 workflow, identity management, and card life cycle requirements. Personal Identity Verification (PIV) cards issued using this solution enable users to have physical and logical access to facilities and IT systems with appropriate audit controls. This solution enables convergence of IT and physical systems to provide a complete end-to-end and seamless control system.

Components

• Novell Client for Windows

• Novell Enhanced Smart Card Method - both server and client modules

• Novell Audit Platform Agent

System Requirements

Identity Vault Server

The Identity Vault server must be running Windows 2003 Server* SP1 (32 bit) or later.

Workstation

Each workstation must run the Novell Client 4.91 SP3 and meet the following minimum requirements:

Note: While NESCM supports the middleware, smart card readers, and smart cards listed below, the Identity Assurance Solution only supports those components listed in the IAS Solution System Requirements.

• Windows XP* SP2 or later installed.

• Middleware supported by the NESCM component of the Identity Assurance Client:

  • Netsign* CAC version 5.5.71.0

  • Gemplus* version 3.2.2 and 4.2

  • ActivCard* Gold for CAC 3.01

  • ActivClient* 6.0 PKI Only

  • CryptoVision* cv act sc/interface 3.2.1

  • eToken* Run Time Environment 3.60

  • DataKey* CIP 4.07

• Smart Card Readers:

  • SCM Microsystems* - SCR241 - PCMCIA

  • SCM Microsystems - SCR131 - Serial (RS232)

  • Cherry - G83-6759LPAUS-2 - USB Keyboard

  • Gemplus - GemPC433-SL - USB

  • Schlumberger - Reflex 72v2

  • Schlumberger - Reflex USB

  • SCM Microsystems - SCR531-USB

  • Precise Biometric 250 MC

  • ActivIdentity* USB Reader 2.0 and 3.0

• Smart Cards:

  • Axalto* Access 64K CAC

  • Gemplus GemXpresso* CAC

  • Oberthur CosmopolIC V4 CAC

  • Schlumberger Access 32K V2 CAC

  • Gemplus GemSAFE* SDK GPK16000

  • CryptoVision - CardOS M4.01a

  • Aladdin* - eToken PRO 64K

  • Oberthur CosmopolIC 64K V5.2 Fast ATR (PIV)

  • GEMALTO GemCombi' Xpresso R4E72 PK (PIV)

The NESCM iManager plug-in supports querying certificate information directly from smart cards. This functionality is supported on Windows with the following browsers:

• Firefox* 1.5x or 2x

• iManager 2.6 SP2 with the NMAS plugin version 10.1.20061031 or later

• Internet Explorer* 6.0 SP2 or later