BlackShield ID is designed to add a strong authentication to a large set of network access devices, web sites and applications:
- Check Point Connectra NGX - a secure remote access gateway that unifies best of breed SSL VPN, IPSec VPN, and integrated intrusion prevention for the most secure connectivity with unmatched centralized management and deployment flexibility. The Check Point Connectra Web security gateway, integrated with BlackShield ID, ensures that only properly authenticated users can access the corporate LAN remotely.
- Check Point VPN-1 Series – provide an active defense that can secure your most demanding sites – such as core networks or data centers. The highly scalable, reliable and secure BlackShield ID ensures that authentication and authorization services are performed seamlessly for VPN-1 and other Check Point products.
- Cisco ASA – With inclusive support for unrestricted full-network access, as well as controlled access to select Web-based applications and network resources, the Cisco ASA 5500 Series SSL/IPsec VPN Edition provides the flexibility required for any VPN deployment. The Cisco ASA Series when integrated with BlackShield ID ensures that only properly authenticated users can access the corporate LAN remotely.
- Cisco PIX Security Appliance – By default the Cisco PIX requires that a user or administrator provide a correct User ID and password to successfully to get access to the network or PIX administration respectively. BlackShield ID augments this logon mechanism by replacing static passwords with strong authentication, requiring a one-time password generated by a CRYPTOCard token during authentication.
- Cisco Secure ACS – Cisco Secure Access Control Server (ACS) is an access policy control platform that aids compliance with growing regulatory and corporate requirements. By integrating with your other access control systems, it helps improve productivity and contain costs. ACS supports RADIUS proxy authentication to BlackShield ID, thereby extending strong authentication to ACS managed devices.
- Cisco VPN 3000 Concentrators – Cisco VPN 3000 Series Concentrators is a family of purpose built, remote access VPN platforms and client software that incorporates high availability, high performance and scalability. Supported connectivity methods include IPSec and WebVPN. The Cisco VPN 3000 Concentrator supports BlackShield ID strong authentication directly via RADIUS.
- Citrix Web Interface 4.6 for XenApp / Presentation Server – BlackShield ID Agent for Citrix Web Interface 4.6 XenApp / Presentation Server mitigates the vulnerabilities surrounding the use of static password logon by adding the requirement for two-factor authentication when logging on. User must authenticate using a their one-time password – a combination of their PIN and the one-time passcode code generated by their token.
- Citrix Web Interface 5.0 for XenApp - Web Interface 5.x for Windows now supports 2-factor authentication with BlackShield ID using RADIUS.
- Fortinet Fortigate - FortiGate appliances provide cost-effective, comprehensive protection against network, content, and application-level threats – including complex attacks favored by cybercriminals – without degrading network availability and uptime. FortiGate units can use the authentication function of the BlackShield ID to enforce the use of one-time passwords to assure only authorized users are able to access protected resources.
- IronKey Enterprise – Activate the MP-1 on your IronKey Enterprise to turn this secure USB flash drive in a token for strong authentication.
- Juniper SA Series VPN – Juniper Networks market-leading SA Series SSL VPN Appliances ensure that remote and mobile employees, customers, and partners have anytime, anywhere access to corporate resources and applications. When configured to use RADIUS, Fortigate authentication can rely on BlackShield ID and the advantages to strong one-time password authentication.
- Juniper Single Sign-on – BlackShield ID can be used with Juniper Networks to provide an SSO solution. During authentication the user is required to provide their UserID, AD password and their BlackShield ID one-time password. On successful authentication the user can be provided access to any applications that use AD for authentication, without being prompted to reenter their AD credentials. The result is a simple logon experience for end-users coupled with SSO logon that is protected by BlackShield ID strong authentication
- Juniper Steel Belted RADIUS - Steel Belted RADIUS (SBR) is the Juniper® implementation of a Remote Authentication Dial-In User Service (RADIUS) server. SBR performs centralized connection authentication, authorization, and accounting for many types of network access, including wireless, authenticating switch, dial-up & virtual private network (VPN) remote access, and router-to-router connections.
- Microsoft IIS Web Servers – Microsoft’s IIS 6 and IIS7 are amoung the most prevalent web servers. When configured to use BlackShield ID, IIS can rely on BlackShield ID and the advantages to strong one-time password authentication.
- Microsoft Network Policy Server (NPS) - Network Policy Server (NPS) is the Microsoft® implementation of a Remote Authentication Dial-In User Service (RADIUS) server and is included in the Microsoft Windows 2008 Server family. The BlackShield ID Authentication Agent for NPS makes it extremely easy to add Strong Authentication to Microsoft /NPS environments.
- Microsoft Internet Authentication Service (IAS) - The BlackShield ID Authentication Agent for IAS makes it extremely easy to add Strong Authentication to Microsoft /IAS environments.
- Microsoft Remote Web Workplace - Microsoft’s Remote Web Workplace provides convenient browser-based access to on-line resources including email, intranets, and file shares. When configured to use BlackShield ID, OWA authentication can rely on BlackShield ID and the advantages to strong one-time password authentication.
- Microsoft Outlook Web Access (OWA) – Microsoft’s Outlook Web Access is one of the most prevalent solutions for browser-based remote access to email, When configured to use BlackShield ID, OWA authentication can rely on BlackShield ID and the advantages to strong one-time password authentication.
- ROVE Mobile – Mobile Admin supports BlackShield ID RADIUS authentication, ensuring that the advantages of truly mobile administration are not compromised by unauthorized logon.
- Pluggable Authentication Module (PAM) – PAM was introduced by Sun Microsystems and quickly adopted across a wide range of *NIX operating systems as a flexible way for software developers to add authentication to their applications without needing to consider the actual authentication method. PAM itself is configurable to support many different authentication methods including RADIUS. This means that any application that is “PAM aware” can use PAM’s support for RADIUS to authenticate against BlackShield ID.
- VMware ESX Server - VMware ESX Server uses Pluggable Authentication Modules (PAM) allowing user authentication in the remote console and the VMware Management Interface to be protected by BlackShield ID.
- SonicWALL - BlackShield ID can be used to protect logon through all SonicWALL products that support RADIUS authentication, including all E-Class, NSA Series, Pro Series, and TZ Series products.
- WatchGuard – BlackShield ID can be used to protect logon through all WatchGuard products that support RADIUS authentication, including all Firebox Series, SSL Series appliances and XTM series.