Identity Assurance Solution
Integration of IT and Physical Security
Get security that reaches beyond IT systems. Not only do you need to control access to your data, but you also need identity verification for the physical world. Offer users convenient yet controlled access to disparate logical IT systems and physical facilities using combinations of biometrics, passwords, personal identification numbers, smart cards, X.509 digital certificates and other forms of advanced authentication.
With the Novell solution your employees and contractors can authenticate to multiple logical IT systems using their standard-issue Personal Identity Verification (PIV) card. The processes for a government employee or contractor to request and obtain a PIV card are automated through a series of customizable workflows and e-mail notifications. The Enrollment sub-system not only manages the workflows and sends e-mail notifications to complete the verification and vetting process, but also integrates with third party systems such as Daon, Viisage, Lenel, EDS, and others, as well as HR or contractor management systems.
The card issuance process automates the creation of a PIV card for federal employees and contractors who have successfully completed the enrollment and identity verification process (based on individual agency guidelines). The applicants' identity information is passed to the Card Management System (CMS) and the CMS automatically sends the information and digital certificate to a card production and badging station for card creation. Once the card is created, the applicant is notified and makes arrangements to obtain her PIV card from the issuing officer and to securely receive her PIN. The PIV card unique identifier is automatically captured in a central repository that holds the identity profile for all of your employees and contractors.
In addition, this solution can be further extended to support typical employee and contractor life-cycle activities such as the following:
- Employee or contractor termination
- Employee role changes (transfers between departments or locations, etc.)
- Employee information changes (name or address updates, and so on)
When an employee or contractor is terminated or fails the vetting process, her access rights are revoked instantaneously and the card management system receives instructions to terminate the card. Upon receiving this notification, the CMS system disassociates the user from the card and revokes the digital certificate on the PIV card, rendering it invalid.