Product overview
Benefits
- Positively identify your Citrix and VPN users
- Token-generated passcodes change every time you log in
- Seamless integration with Active Directory
- Easy, fast installation: runs on existing servers
- Supports Citrix Presentation Server, Secure Access Manager, Password Manager, Citrix Access Essentials, and all major VPNs
Strong authentication designed for Citrix
SafeWord® for Citrix® provides a complete solution for strong authentication
specifically designed to protect access to Citrix applications and VPNs. With tokens that
generate new passcodes with every user login, tight integration with many Citrix products, and simplified
management through Active Directory, SafeWord for Citrix lets you easily and cost-effectively
eliminate the password risk.
Passwords are the weakest link in your security
Increasingly, Citrix users are accessing their applications from anywhere with just a
Web browser, and the most common way to identify users is with only a password. But relying on
passwords for security makes your network easy to break into. Passwords can be readily hacked
using a wide variety of attacks, including sniffing, brute force attacks, dictionary attacks, personal
information gathering, or simply tricking users into revealing their passwords. Industry experts
estimate that 35 percent of corporate network passwords can be hacked within five minutes.
Conventional wisdom says passwords should be made more complicated (one government
agency has a password policy that's 30 pages long!), but even the strictest password policy can
be undermined by a simple Post-it. The practical reality is that complex passwords are harder to
remember and more likely to be written down, taped to monitors, or hidden under keyboards. Or
your users may just forget their complex password, causing your help desk costs to soar.
The best solution for Citrix: strong authentication
SafeWord for Citrix provides strong authentication—a simple and effective way to
eliminate the risks of passwords for access to your Citrix applications and VPNs.
To understand strong authentication, think of your ATM card. When you withdraw money from
your bank you use a combination of two security factors—something you have (your card) and
something you know (your PIN). You probably wouldn’t want your bank to allow withdrawals
with just one of these factors, yet many Citrix deployments that protect extremely valuable data,
proprietary information, and mission-critical applications are protected by only one factor—a
weak password.
SafeWord for Citrix delivers the extra security needed with tokens that generate
new passcodes for every user login. Each user is assigned a token that can generate millions of
unique codes based on an internal secret key. To log into Citrix, the user simply pushes a button
on the token to generate the next one-time code, then
enters this code along with a short memorized PIN.
| The robust SafeWord authentication server verifies each
token-generated passcode, allowing access only to users
with valid codes and PINs. After being used once, a
one-time passcode is then useless, eliminating the risk
of outsiders stealing, copying, or reusing passwords.
The combination of dynamic codes and two-factor
authentication provides unbeatable security. |
SafeWord tokens generate new passcodes for every user login
|
Simple management without redundant user accounts
SafeWord for Citrix installs rapidly and can be run on servers you already have in
your network. Where other authentication systems may require extensive training, additional
hardware, and complex configuration, SafeWord for Citrix can be set up in minutes.
SafeWord for Citrix provides unprecedented
ease of management compared to other authentication
products because the product utilizes existing user records in
Active Directory. There is no need to create redundant user
accounts in a separate database, saving administrative time
and money.
Simplified management through Active Directory |
Click image to enlarge |
In fact, SafeWord for Citrix is managed entirely
through a plug-in to the Microsoft Management Console
(MMC), allowing you to easily assign tokens to your Citrix and
VPN users, manage user PINs, import token records, generate
emergency backup passwords, and test tokens.
SafeWord for Citrix also simplifies strong
authentication for your users with a single login screen, adding a
field for token-generated passcodes to the familiar Web interface or
Secure Access Manager login screen.
Requirements
SafeWord for Citrix requires Secure Access Manager, and users managed through Active Directory. SafeWord for Citrix components can be installed on the
same servers used to run Active Directory. SafeWord for Citrix also protects Password Manager, Citrix Access Gateway, GoToMyPC Corporate, all major VPNs, and RADIUS devices.
Do you need additional features?
If you need to protect access to Web, wireless, or legacy systems, if you need a wider range of
authentication options, or if you need more powerful features such as role-based authentication,
consider Secure Computing SafeWord® PremierAccess™. An award-winning strong authentication
and access control solution for enterprises, PremierAccess provides unparalleled flexibility,
powerful access control features, and many authentication choices including hardware tokens,
software tokens, smart cards, digital certificates, biometrics, and MobilePass®, which sends onetime
passcodes to your cell phone or pager
also protects Password Manager, VPNs, and RADIUS devices.
Dramatically reduce the time and cost of deployment
SafeWord for Citrix greatly simplifies the process of
deploying tokens to your end-users. The embedded User Center allows
your users to self-enroll their tokens, manage and update their PINs,
and test their tokens. This optional self-enrollment capability can save your organization more than 80% of the costs typically associated with assigning and distributing tokens.
|
Web-based user self-enrollment and PIN changes |
Requirements:
| Citrix
Windows 2000 or 2003 server platform
Active Directory populated with Citrix users
Secure Access Manager
Also supports Password Manager, all major VPNs and RADIUS devices
|
SafeWord server requirements
Can run on existing hardware used for Active Directory
256 MB RAM minimum; 512 MB RAM recommended
300 MB disk space minimum; 3 GB disk space recommended
|
SafeWord Web Agents for
Citrix
Runs on existing hardware used for Citrix
Internet Explorer 5.5 or above for configuring the Web Agent
No additional memory requirements
1 MB min
|
For more information on all Secure Computing products, please visit www.securecomputing.com.
