VASCO Data Security - A World Leader in Strong AuthenticationVASCO VACMAN Middleware

DIGIPASS authentication service middleware

VASCO VACMAN Middleware

Overview:

VACMAN Middleware is a software suite for organizations of all sizes that need to authenticate remote users for access to enterprise networks and its applications. This state-of-the art VASCO product is used to verify authentication requests and to centrally administer user authentication policies. VACMAN Middleware and VASCO’s DIGIPASS authenticators provides affordable strong authentication and secure access to web applications, business applications and virtual private networks.

You’ve invested considerable time and energy protecting your network from unauthorized remote users by implementing password based security. Raise your level of protection and eliminate your exposure to password abuse without the costly replacement or redesign of your existing remote access solution. VACMAN Middleware is based on VASCO DIGIPASS technology and provides strong authentication security which can be easily integrated into your current infrastructure.

Remote access is one of the most valuable – and most vulnerable – features in a corporate network. Today you simply cannot afford to leave your systems and valuable corporate data unprotected. VACMAN Middleware is the simple and cost-effective solution to help you authenticate remote users requesting access to your network. Using an individually assigned DIGIPASS authenticator, your remote users will be able to proof their claimed identity quickly and easily through a dynamically generated one-time password.

VACMAN Middleware simplifies things for the network administrator, also. This solution can elevate remote access security in any radius and web environment by enforcing DIGIPASS strong authentication technology. But there’s more ... VACMAN Middleware can also provide back-end server authentication for any RADIUS/IIS enabled firewall application.

Functions

  • Verification of authentication requests
  • Central administration of users, DIGIPASS authenticators and authentication policies

Features & Benefits:
 

Features

  • Strong DIGIPASS based two-factor authentication
  • Support of radius and web server environments
  • Policy based authentication
  • Bulk management and auto management
  • Flexible DIGIPASS assign procedures
  • Active directory integration
  • ODBC database support
  • Dynamic user registration
  • Password auto learning
  • DIGIPASS authenticator auto assign
  • Comprehensive audit system
  • Support of multiple authentication server environments

Benefits

  • Strong authentication without the hassles
  • Designed to fit the needs of any size organization
  • ‘Out-of-the-box’ solution
  • Easy to integrate, administer and audit
  • No software installation on client PCs
  • Seamless solution; easy to use
  • Extremely low ‘total cost of ownership

Standard RADIUS Setup without Authentication Server

Standard RADIUS Setup with Authentication Server

Web Client Setup with Authentication Server and Back-End RADIUS Server

Strong, two factor authentication

The combination of VACMAN Middleware and DIGIPASS authenticators provides a much more reliable form of user authentication than reusable static passwords and can be easily implemented. It’s a turnkey solution that can be up and running in hours; not days or weeks.

Active Directory Integration

The main authentication instance in a VACMAN Middleware enabled infrastructure remains the Active Directory service. The storage of the DIGIPASS related data is linked with the users in the Active Directory. This scalable approach provides optimal support for multiple domains and delegated administration.

ODBC compliant database support

VACMAN Middleware supports ODBC compliant databases, such as Oracle 9i, Microsoft SQL server 2000 and 2005, IBM DB2 8.1, Sybase Adaptive Server Anywhere 9.0 and PostgreSQL 8.0 and 8.1. VACMAN Middleware comes standard with PostgreSQL.

Auditing and reporting

The audit console monitors incoming and outgoing radius and web traffic (or any other events) on the VACMAN Middleware server. Informational statistics gathered by the audit console provide critical details necessary to easily manage your remote access environment including:

  • Connection period
  • Number of information messages
  • Warnings
  • Errors and fatal

Interoperability

Hardware or software conflicts are not a concern as VACMAN Middleware uses a non-intrusive method of enabling DIGIPASS authentication. Simply position VACMAN Middleware between the Network Access Server and your existing radius server; the performance will be unaffected.

Technical Specifications:

Technical Specifications
Radius
  • RFC 2865 and 2866
Authentication
  • DIGIPASS
  • OATH
System Requirements
Operating System
  • Windows 2000/XP
  • Windows Server 2000/2003
  • Windows NT Server 4.0 with SP 6 or greater
Processor
  • Pentium 500 MHz or faster
  • The following conditions may increase the load of the CPU:
    • Heavy volume of RADIUS authentication / accounting requests • RADIUS requests proxied to RADIUS server
    • One or more audit consoles active
    • ODBC auditing enabled • Server debug option enabled
Memory
  • Minimum RAM capacity of 512 MB
  • The following conditions may increase memory size requirements:
    • User cache enabled with a large number of users to be cached • JAVA based Admin GUI or Audit Console active
Disk Space
  • Minimum disk space of 100 MB
  • The following conditions may increase disk space requirements:
    • Large number of user and token records
    • Audit log files that are not archived
Winsock
  • Version 2.0 or above

Documentation:

PDF File
Download the VASCO VACMAN Middleware Data Sheet (.PDF)