Home

Sphinx Feature List - Open Domain Sphinx Solutions

1. Logon to Windows Password change reminder Sphinx can prompt cardholder to change Windows password ey 7 g every specified number of days Setting can be established by end user in Sphinx Logon Manager software or by Administrator in Sphinx CardMaker software as required Administrator can specify if end user will be allowed to change this setting More info Logon Manager User s Manual Settings Menu gt Logon to Windows CardMaker Administrator s Manual Configuration gt Card Settings gt Windows Password Policy Password repetition control Sphinx can prohibit the entry of up to four previously used 7 Windows passwords when cardholder changes Windows password Administrator can establish setting in Sphinx CardMaker software More info CardMaker Administrator s Manual Configuration gt Card Settings gt Windows Password Policy System logging of When the CardMaker server is active the system will log when Y a cardholder logon and logoff end users logon to Windows and logoff of Windows with their card This record can be viewed as a CardMaker transaction report More info CardMaker Administrator s Manual Reports gt Transactions Website and Application Logon Features Sphinx Sphinx Enterprise Feature o Description eee Standalone Enterprise PKI End user presents card to card reader and enters card PIN to logon to websites and applications Sphinx transfers logon data to logon process transparently so th
2. for self enrollment or when a card that was issued from the CardMaker software does not yet contain any personalized data Installations which want to specify a different initial PIN PUK for each card that is issued from the CardMaker software for example installations that pre load information to the card or card account have the option to generate a random PIN PUK for each card A PIN letter is automatically generated in the Sphinx CardMaker software that can then be emailed or delivered to the end user Cardholders with randomly generated PIN PUKs will not be prompted to change their PIN and PUK upon first use but this is recommended since the initial PIN and PUK will be the same Not available for cards that self enroll More info CardMaker Administrator s Manual Configuration gt Card Settings gt PIN Administrator managed PUK Organizations that issue cards from the CardMaker software can 7 choose to keep responsibility for the PIN in the cardholder s hands but keep the PUK accessible for the administrator so that administrators can always unlock end user cards Not available for cards that self enroll More info CardMaker Administrator s Manual Configuration gt Card Settings gt PIN Require PIN PUK change All Sphinx installations prompt end user to change the initial 7 z upon first use option default PIN and PUK upon first use Installations that require an additional level of control can select the
3. functionality works as easily as all of the other Sphinx features More info CardMaker Administrator s Manual Tools gt Managed Entries All managed entries are available via an API for 3rd party identity management and provisioning systems Interfaces are based on ODBC LDAP and XMP RPC standards Other Administrator Features Administrator program protection Administrator assignment Activity log Master slave administrator stations Administrators logon to Sphinx CardMaker using Administrator password or based on the administrator rights granted to their card More info CardMaker Administrator s Manual Card Issuance gt Administrator Rights Primary Administrator grants or revokes Sphinx CardMaker rights for other Administrators More info CardMaker Administrator s Manual Card Issuance gt Administrator Rights When Administrators logon to Sphinx CardMaker with their card the activity log automatically records which administrator performed each activity More info CardMaker Administrator s Manual Reports gt Transactions When more than one administrator workstation is required for card issuance and administration the Sphinx CardMaker software can be installed on one or more secondary workstations which can be configured to operate in Slave mode When operating in Slave mode the admin station accesses all configuration files on the Master computer and accesses the database files as configured
4. must be stored on the CardMaker server This feature is not available for smart cards that store data on the card but smart card installations can opt to load preset Wizard entries to cards at issuance See also Logon Entries Wizard below More info CardMaker Administrator s Manual Tools gt Managed Entries Administrator can pre enter logon entries into cards or card accounts and the Sphinx Logon Entries Wizard will prompt the cardholder to personalize the entry with their user name and or password when they open the Sphinx Logon Manager software For smart cards that store data on the card Wizard entries can be automatically loaded to the cards of all members of a user group upon card issuance For card data that is stored on the CardMaker server ie RFID cards Wizard entries can be loaded to card accounts at any time More info CardMaker Administrator s Manual Tools gt Logon Entries Wizard Whenever cardholder enters logon information into a website that Sphinx recognizes as being recordable Sphinx asks cardholder if he wants to record the logon data Whenever cardholder goes to a website or application logon location which Sphinx has recorded Sphinx prompts cardholder to present card and enter PIN then automatically enters logon data and cardholder is logged on More info Logon Manager User s Manual Logon Entries Screen It s easy to record application logon data using the Record button Or end users who don
5. on the Master More info CardMaker Administrator s Manual Gettina Started gt Master All logos and trademarks are the property of the originating company FEAT 0908 Sphinx Sphinx Enterprise Feature S Description 2 Standalone Enterprise PKI Page 12 of 15 Sphinx Feature List Security Features Sphinx Sphinx Enterprise Feature O O Description sss Standalone Enterprise PKI User designated PIN By default upon first use cardholder is prompted to choose a unique Personal Identification Number PIN This PIN along with presentation of the card will be required for all access to the Sphinx Logon Manager software More info Logon Manager User s Manual Getting Started gt Changing Default Card PIN User designated PUK By default upon first use cardholder is prompted to choose a 7 F y unique Personal Unlock Key PUK The PUK is a second card PIN which the cardholder can use to unlock their card A card will be locked and no longer accepted within the Sphinx system if the cardholder enters the wrong PIN multiple times Once a card has been locked Sphinx will prompt the cardholder to enter the PUK to unlock the card More info Logon Manager User s Manual Getting Started gt Changing Default Card PIN Randomly generated PIN PUK Most Sphinx installations use the standard default initial PIN of Z J option 12345 which the end user is prompted to change upon first use This is typically appropriate
6. Sphinx CardMaker option which will require that the end user change the initial default PIN PUK upon first use In this case if the PIN PUK is not changed the program will not continue More info CardMaker Administrator s Manual Confiquration gt Card Settinas All logos and trademarks are the property of the originating company Page 13 of 15 FEAT 0908 Sphinx Feature List PIN policy control PIN verification timeout Biometric authentication Encryption Secured data exchange with card Card security features Secure web server Connection to secure server protected by SSL Administrator can specify required PIN length and character type numeric upper case lower case in Sphinx CardMaker software and end user must conform to these requirements PIN Policy established also applies to PUK More info CardMaker Administrator s Manual Configuration gt Card Settings gt PIN Specifies the length of time that a PIN will be stored in memory After this time end user will be prompted to re enter PIN Setting can be established by end user in Sphinx Logon Manager software or Administrator in Sphinx CardMaker software as required Administrator can specify if end user will be allowed to change this setting More info CardMaker Administrator s Manual Configuration gt Card Settings gt PIN A biometric device such as a fingerprint or iris reader can be used for end user authentication either
7. Sphinx Feature List Sphinx Versions The Sphinx software is available in three versions to meet the needs of all types and sizes of organizations The list below indicates the features that are included in each Sphinx version See also www odsphinx com for additional information Version Order Description included software components No management or issuance system required e Install Sphinx Logon Manager software and desktop card readers on end user computers e End users present their IDs card to card readers to self enroll with Sphinx and start protecting their logon data Sphinx Standalone S 20 Easy setup and self enrollment features of Sphinx Standalone version plus e Pre configured Sphinx CardMaker management software runs out of the box on administrator server computer e Administrators who want more control can change the default settings of this full featured software to specify PIN and password policies link to HR databases and much more Sphinx Enterprise All functionality of Sphinx Enterprise version plus e PKI card interface and middleware is built in enabling the ID card to support the full spectrum of certificate based functions such as email encryption and digital signatures for documents Sphinx Enterprise PKI Windows Logon Features Card secured logon to Windows recorded user s computer via the Microsoft GINA API More info Card Settings gt Logon to Windo
8. and trademarks are the property of the originating company Page 15 of 15 FEAT 0908
9. assword when they open the Sphinx Logon Manager software For smart cards that store data on the card Wizard entries can be automatically loaded to the cards of all members of a user group upon card issuance For card data that is stored on the CardMaker server ie RFID cards Wizard entries can be loaded to card accounts at any time More info CardMaker Administrator s Manual Tools gt Logon Entries Wizard All logos and trademarks are the property of the originating company Page 2 of 15 FEAT 0908 Sphinx Feature List Storage of multiple Windows logons Pull card to lock logoff or shutdown computer Pull card to lock logoff disconnect from Terminal Services session Tap in tap out behavior Control Windows secure screen saver and lock workstation functions from Sphinx Windows password change synchronization Windows password policy control All logos and trademarks are the property of the originating company FEAT 0908 For end users with multiple Windows logon identities or domains Sphinx allows entry and selection of multiple logons More info Logon Manager User s Manual Settings Menu gt Logon to Windows End user can remove card from reader to lock logoff or shutdown workstation Removal of card invokes the appropriate Windows process Setting can be established by end user in Sphinx Logon Manager software or by Administrator in Sphinx CardMaker software as required Ad
10. at keystrokes cannot be observed or recorded More info Logon Manager User s Manual Logon Entries Screen Card secured logon to websites and applications End user managed logon entries By default cardholder is prompted to auto record their logon data Vv 7 7 for websites and save it to their Sphinx account Application logon data is easily recorded using the Record button The next time cardholder goes to a website or application that Sohinx knows cardholder is prompted to present card and enter PIN to logon to website or application Note Logon data which end user saves with Sphinx cannot be accessed by Administrator More info Logon Manager User s Manual Logon Entries Screen All logos and trademarks are the property of the originating company Page 4 of 15 FEAT 0908 Sphinx Feature List Administrator managed logon entries Logon Entries Wizard Auto record and auto fill of logon data Initiate recording of logon data Manual entry and button click fill of logon data Sphinx pop up Administrator may choose to preset logon entry data and load it to end user Sphinx accounts Administrator can also continue to manage logon data for cardholders if desired by updating logon data in cardholder account For entries created by Administrator Administrator can specify if end user will be allowed to view or change the logon data See also Managed Entry Features In order to use this feature card data
11. dows protocols for Standalone as well as networked computers NT Domain Servers Active Directory No change to RFID card setup Requires no change to existing configuration of RFID cards that _ are compatible with Sphinx Cardholders can self enroll with Sphinx using the cards they already have with no administrator involvement The added logical access functionality with Sphinx does not impact on any other RFID card functions such as facility All logos and trademarks are the property of the originating company Page 9 of 15 FEAT 0908 Sphinx Feature List access control time amp attendance or e purse functions When a Sphinx installation is setup to store data on the card Sphinx can be pre configured to only use the available free sectors on the card Auto enrollment Features Standalone installations or installations that store data on the server Sphinx Sphinx Enterprise Feature Description eee Standalone Enterprise PKI No configuration required Software is pre configured with standard default settings and ready for end user self enrollment immediately after installation More info Logon Manager User s Manual Getting Started gt Sphinx Self Enrollment End user self enrollment By default upon first use cardholder presents card to card reader and is prompted to enter Windows user name and password to register with Sphinx server Administrator can change the default settings to also require entry of na
12. equire that a card and card reader is also required in Laptop Mode and can specify this setting in the Sphinx CardMaker software More info All logos and trademarks are the property of the originating company Page 7 of 15 FEAT 0908 Sphinx Feature List Logon Manager User s Manual File Menu gt Save to Laptop CardMaker Administrator s Manual Configuration gt Program Settings gt Server PORS EERO ERGE For card installations that use the Sphinx CardMaker server to yy VY server remotely store Sphinx data this feature enables user to access Sphinx data on server without a card or card reader when traveling For security reasons this option is typically only made available upon user request for example if user forgot to load Sphinx data to laptop before leaving headquarters Administrator can activate this capability on an individual basis for a defined period of time in the Sphinx CardMaker software More info CardMaker Administrator s Manual Configuration gt Program Settings gt Server No training required End user interface is intuitive and easy to use Software prompts P 7 7 guide end user through program Auto start and minimize Sphinx Logon Manager software automatically starts at system 7 7 7 startup so that it is available for logons throughout the session After auto start software automatically minimizes to the system tray Thereafter Sphinx auto fills logon data or end user double clicks o
13. er Administrator s Manual Card Issuance gt Issue Cards and Configuration gt Program Settings Card Settings Database importing Employee data can be imported from HR database into Sphinx CardMaker software before card issuance if required Built in data import functions support ODBC and LDAP compatible databases Sphinx CardMaker can also be linked with facility access control card management system if desired More info CardMaker Administrator s Manual Tools gt Data Import All logos and trademarks are the property of the originating company Page 10 of 15 FEAT 0908 Feature List User groups Administrator can specify different default card settings and managed entries for different user groups for example Sales Department or Management More info CardMaker Administrator s Manual Card Issuance gt Issue Cards and Configuration gt Card Settings One step issuance Administrator clicks Issue Card in Sphinx CardMaker software and chooses end user from database or enters end user data to issue card More info CardMaker Administrator s Manual Card Issuance gt Issue Cards ID card printing Administrator has the option to print ID cards as a part of the issuance step using a TWAIN compatible webcam and an ID card printer Allows for full color printing on one side with photo name ID and additional fields as desired More info CardMaker Administrator s Manual Card Issuance gt Issue Cards L
14. eviously used 7 passwords when cardholder changes a website or application All logos and trademarks are the property of the originating company Page 6 of 15 FEAT 0908 Sphinx Feature List password Administrator can establish setting in Sphinx CardMaker software More info CardMaker Administrator s Manual Configuration gt Card Settings gt Website Application Password Policy Other End user Features Sphinx Sphinx Enterprise Feature Description Standalone Enterprise PKI Storage of address and End user stores address and payment information in Sphinx for payment information use in website and application entry fields The labels of all address and payment entry fields can be customized by the end user More info Logon Manager User s Manual Address Entries Screen and Payment Screen Drag and drop transferal of Cardholder can drag address and payment information and address and payment information drop it into website and application entry fields so that this basic information does not have to be continually re typed More info Logon Manager User s Manual Address Entries Screen and Payment Screen Backup and restore data Cardholder can back up all of his Sphinx data to his computer s hard drive the network or a removable data carrier such as a memory stick or floppy disk Sphinx prompts cardholder to enter a backup password Then if he loses his contact chip card or forgets the authent
15. ication data for his contactless card he can restore his Sphinx data to a new card as long as he knows his backup password Setting of backup location can be established by end user in Sphinx Logon Manager software or Administrator in Sphinx CardMaker software as required Administrator can specify if end user will be allowed to change this setting More info Logon Manager User s Manual Utilities Menu gt Backup Restore CardMaker Administrator s Manual Configuration gt Card Settings gt Backup Auto backup reminder Sphinx can prompt cardholder to backup his Sphinx data every specified number of days at a certain time of day or after data has been saved to Sphinx a specified number of times Setting can be established by end user in Sphinx Logon Manager software or Administrator in Sphinx CardMaker software as required Administrator can specify if end user will be allowed to change this setting More info Logon Manager User s Manual Utilities Menu gt Backup Restore CardMaker Administrator s Manual Configuration gt Card Settings gt Backup Save Sphinx data to laptop For card installations that use the Sphinx CardMaker server to store Sphinx entries cardholders have the option to save their Sphinx data to Laptop Mode so that they can use Sphinx to access this data without a card card reader or network connection while they travel with their laptop Administrator also has the option to disable Laptop Mode or r
16. in combination with a card and or PIN or by itself Full biometric capabilities are completely integrated into the Sphinx software and work out of the box with selected BIO API compatible devices including biometric enrollment and authentication More info Logon Manager User s Manual Getting Started gt Sphinx Self Enrollment gt Installations with Fingerprint Readers CardMaker Administrator s Manual Configuration gt Card Settings gt PIN Each issued Sphinx card or Sphinx account is secured by its own unique set of TDES encryption keys If an installation requires a specific encryption method the modular Sphinx encryption engine can be exchanged for special customized versions For card installations that store Sphinx data on the card all security sensitive Sphinx data is first encrypted before being exchanged with the card Sphinx takes advantage of the card security features already offered by the powerful compatible card technologies to provide an additional layer of security See Solution Packages at www odsphinx com Sphinx CardMaker software installed on a Windows 2000 Server or Windows 2003 Server machine utilizes the Windows Internet Information Services challenge response authentication based on random number generation and data encryption to provide secure server functionality Installations can choose to additionally secure the data exchange between client and server via SSL More info CardMaker Ad
17. istrator assigns managed entries to user groups or 7 7 entries to user groups or individuals and edits user name and password information as REIES required for the group or individual More info CardMaker Administrator s Manual Tools gt Managed Entries All logos and trademarks are the property of the originating company Page 11 of 15 FEAT 0908 Sphinx Feature List Simple managed entry screen End user edit control Storage control No additional programming required API for identity management systems Managed entries are easy to edit using the Managed Entries screen in the Sphinx CardMaker software where Administrator has an overview of all managed entries and can easily select edit and assign managed entries More info CardMaker Administrator s Manual Tools gt Managed Entries Administrator can specify if user group or individual end user will be allowed to view edit all edit password or delete the managed entry More info CardMaker Administrator s Manual Tools gt Managed Entries Administrator can specify if the managed entry will be stored on the end user card and on the server or stored only on the Sphinx server More info CardMaker Administrator s Manual Tools gt Managed Entries Many other logon management systems require that the administrator program links to the applications for which logon entries will be managed No programming is required with Sphinx The managed entries
18. ith PKINIT authentication protocol for domain and local access The Microsoft GINA has built in support for this functionality for Windows 2000 or higher See also PKI Features Logon Manager User s Manual Getting Started gt PKI Usage Page 1 of 15 Sphinx Feature List End user managed By default upon first use cardholder is prompted to enter his y Windows logon data existing Windows logon data into Sphinx Logon Manager With next system reboot cardholder is prompted to present card and enter PIN to logon to Windows Note Logon data which end user saves with Sphinx cannot be accessed by Administrator More info Logon Manager User s Manual Settings Menu gt Logon to Windows Administrator managed Administrator may choose to preset Windows logon entry data for Windows logon data individuals or groups of cards Administrator can also continue to manage Windows logon data for cardholders if desired by updating Windows logon data in cardholder account For entries created by Administrator Administrator can specify if end user will be allowed to view or change the logon data See also Managed Entry Features In order to use this feature card data must be stored on the CardMaker server This feature is not available for smart cards that store data on the card but smart card installations can opt to load preset Wizard entries to cards at issuance See also Logon Entries Wizard below More info CardMaker Administrat
19. m Sphinx Sphinx to browse to that location or start application and auto fill or transfer logon data More info Logon Manager User s Manual Logon Entries Screen Submit control Cardholder can choose to submit logon data to logon processes automatically or can choose to manually control the submission of logon data With the latter option cardholder must click on the website or application Submit or Enter button to submit logon data Manually controlled submission of logon data is the default for auto filled entries More info Logon Manager User s Manual Logon Entries Screen Drag and drop transferal Logon data fields can be dragged and dropped into logon entry of logon data fields as desired More info Logon Manager User s Manual Logon Entries Screen Password policy control Administrator can specify required password length and character type numeric upper case lower case for websites applications in Sphinx CardMaker software and end user must conform to these requirements when entering or changing passwords More info CardMaker Administrator s Manual Configuration gt Card Settings gt Website Application Password Policy Generate random password When end user creates or changes a website or application password he can generate a random password which conforms to the installation s Password Policy if applicable If installation has no Password Policy end user can specify password length and characte
20. me and employee ID as desired This information except for Windows password will populate the CardMaker cardholder database Cardholders with Sphinx Standalone version will instead be prompted to enter their Sphinx license key Sphinx software is then ready for immediate use More info Logon Manager User s Manual Getting Started gt Sphinx Self Enrollment CardMaker Administrator s Manual Card Issuance gt Self Enrollment and Configuration gt Program Settings gt Server End user self re enrollment By default if end user loses his card and is given a new card he can self re enroll with Sphinx and access his previous Sphinx data if he knows his personal security code Note Standalone users must have a backup of their previous Sphinx data and know their backup code if they want to use previous data with their new card Administrator can change the default to disallow self re enrollment as desired More info CardMaker Administrator s Manual Card Issuance gt Self Enrollment and Configuration gt Program Settings gt Server Managed Enrollment Features Sphinx Sphinx Enterprise Feature j Description ees Standalone Enterprise PKI Customizable settings Installation can use manufacturer s software default settings Or Administrator can change software settings in Sphinx CardMaker software before issuing cards to reflect corporate security policies and control how the end user uses Sphinx More info CardMak
21. ministrator can specify if end user will be allowed to change this setting In addition to card removal behavior workstation can also be locked using an optional sonar device that detects when end user steps away from workstation Sphinx is also compatible with this device More info Logon Manager User s Manual Settings Menu gt Logon to Windows CardMaker Administrator s Manual Configuration gt Card Settings gt Windows Logon End user can remove card from reader to lock logoff disconnect i 7 or shutdown from a Terminal Services session Removal of card invokes the appropriate Windows process Setting is established by Administrator in Sphinx CardMaker software Administrator can specify if end user will be allowed to change this setting Administrator also has the option to specify that a custom script will be launched upon card removal also triggering a disconnect of the remote session if desired More info CardMaker Administrator s Manual Configuration gt Card Settings gt Windows Logon Typically used for contactless cards When this option is a 7 activated the pull card action that was specified as described above will be triggered upon tapping the card on the card reader More info CardMaker Administrator s Manual Configuration gt Card Settings gt Windows Logon End user can lock Windows session before stepping away from their desk using Sphinx short cut button End user can unlock a Windo
22. ministrator s Manual Getting Started gt Installation Checklist All logos and trademarks are the property of the originating company FEAT 0908 Page 14 of 15 Sphinx Feature List Other Software Features Sphinx Sphinx Enterprise Feature Description Standalone Enterprise PKI Wide compatibility The Sphinx software can be used out of the box with all of the major card and reader technologies on the market such as contactless cards 125kHz and 13 56 MHz including Prox Mifare DesFire HID iClass Legic contact cards including Java MULTOS CardOS Secure Memory and MAG stripe cards Likewise Sphinx is compatible with PC SC compatible desktop card readers and tokens of which there is a wide availability on the market See www odsphinx com for Compatible Products list and out of the box Solution Packages Built for interoperability The Sphinx software is built around open API standards to provide 7 7 Z interoperability between platforms card readers cards and third party software solutions Sphinx is either out of the box compatible or can easily be integrated with many third party software and hardware products By leveraging interoperability standards Sphinx reduces the total cost of ownership for the end customer PC SC can be used with all PC SC conforming smart card readers ISO 7816 has built in interfaces for a number of ISO 7816 compatible cards ISO 7816 compatible cards that are currently not s
23. n Sphinx icon to access software as required These default setting can also be switched off according to user preference Administrator can control auto start capability as desired in the Sphinx CardMaker software More info Logon Manager User s Manual Settings Menu gt General CardMaker Administrator s Manual Configuration gt Card Settings gt General PKI Features Sphinx Sphinx Enterprise Feature Description Standalone Enterprise PKI One step installation PKI middleware software self installs at end user and of middleware software administrator computers and is ready for immediate use with no additional configuration required More info Logon Manager User s Manual Getting Started gt PKI Usage Notes CardMaker Administrator s Manual Getting Started gt Administrator Software Installation Seamlessly integrated with Sphinx The Sphinx PKI middleware has been fully integrated with the Sphinx software in the Sphinx Enterprise PKI version End users can use Sphinx Logon Manager software functionality and PKI functionality seamlessly together using a single card Administrators manage the solution using the Sphinx CardMaker software interface Note Features described under Windows Logon Features refer to GINA based logon features Certificate based Windows logon features that an organization chooses to implement will be independent of the GINA based logon features More info Logon Manager User s Ma
24. nual Getting Started gt PKI Usage Notes CardMaker Administrator s Manual Getting Started gt Administrator Software Installation Includes PKCS 11 library and Cryptographic Service Provider z Standards based CSP for applications supporting Microsoft CryptoAPI Supports all maior standards and interfaces including PKCS 11 Microsoft All logos and trademarks are the property of the originating company Page 8 of 15 FEAT 0908 Sphinx Feature List CryptoAPI PC SC PKCS 12 PKCS 15 On board cryptographic key generation up to 2 048 bit Secure Secure storage storage of X 509 digital certificates Multiple key and certificate 7 storage Seamless Windows Fully transparent Windows logon 2000 XP Vista 2003 7 Seamless integration in Windows secure user authentication e mail signing and encryption VPN network access logon and Terminal Services Windows 2003 Baltimore Entrust eTrust Global Sign Microsoft RSA Supported PKI systems SafeGuard SafeLayer Verisign 4 VPN Check Point Cisco Microsoft NCP Secure e mail clients Microsoft Outlook 98 2000 XP Vista Express Novell Groupwise 6 Mozilla Thunderbird Mozilla Firefox SSL authentication for browsers Microsoft Internet Explorer Mozilla Firefox Other applications Citrix Lotus Notes PGP SSH Tectia Client RSA SecurlD SafeBoot Utimaco J Works out of the box with a diversity of state of the art cards and Interoperability t
25. okens See Solution Packages at www odsphinx com Setup Features Sphinx Sphinx Enterprise Feature Description Standalone Enterprise PKI Easy installation Pre configured Sphinx Logon Manager software self installs at of end user software end user computers and is ready for immediate use with no additional configuration required Sphinx Logon Manager setup is based on Microsoft Installer which is compatible with numerous network installation tools More info Logon Manager User s Manual Getting Started compatibility Supported applications Easy installation Pre configured Sphinx CardMaker software self installs at of administrator software administrator server computer Administrator specifies only three server settings imports license keys and software is ready for immediate use with no additional configuration required More info CardMaker Administrator s Manual Getting Started Easy import of license keys Use the Sphinx CardMaker software to load the license keys to your Sphinx installation with a couple of mouse clicks Sphinx license keys are based on the number of cardholders with a unique license key for each cardholder More info CardMaker Administrator s Manual Configuration gt Key File No change to network Requires no change to existing network setup or user accounts on or Windows setup domain server Requires no change to existing Windows setup Logon to Windows performs according to standard Win
26. or s Manual Tools gt Managed Entries and Appendix Using Sphinx With Active Directory Sychronized Active Directory When this option is activated Sphinx automatically enrolls new enrollment for Windows logon end users in Active Directory and updates the accounts of existing users upon card issuance Once the end users have the cards in their hands all cards can immediately be used to logon to network computers Sphinx works with Active Directory to use the Cardholder ID that Administrator enters into Sphinx as the Windows user logon name For users who are already known to Active Directory Sphinx simply resets the Windows password in Active Directory before loading the logon data to the card account For new users Sphinx causes a new Active Directory account to be created for the user before generating a new Windows password and loading the data to the card account Administrator can specify if end user will be allowed to view or change the logon data In order to use this feature card data must be stored on the CardMaker server This feature is not available for smart cards that store data on the card More info CardMaker Administrator s Manual Appendix Using Sphinx With Active Directory Logon Entries Wizard Administrator can pre enter logon entries for additional Windows logons into cards or card accounts and the Sphinx Logon Entries Wizard will prompt the cardholder to personalize the entry with their user name and or p
27. ost or stolen card hotlist When a card is lost or stolen it can be reported to the Sphinx 7 i CardMaker software so that it will no longer be accepted within the Sphinx system More info CardMaker Administrator s Manual System Maintenance gt Report Lost Stolen Defective Returned Card One step card re issuance After a card has been hotlisted a new card can be re issued to the 7 7 cardholder by selecting the cardholder s name from the cardholder list More info CardMaker Administrator s Manual System Maintenance gt Re issue Card Recycle card All Sphinx card data can be erased using the Sphinx CardMaker software so that the card can be re used and issued to another user More info CardMaker Administrator s Manual System Maintenance gt Recycle Card Reports Complete cardholder reports and transaction logs are available in the Sphinx CardMaker software More info CardMaker Administrator s Manual Reports Managed Entries Features Sphinx Sphinx Enterprise Feature Description Standalone Enterprise PKI Easy creation of managed entries Administrator simply creates a logon entry using the Sphinx Logon Manager software and saves it When the adminstrator auto records the logon entry Sphinx learns the logon location of the entry and the formats for user name password and other entry fields More info CardMaker Administrator s Manual Tools gt Managed Entries Easy assignment of managed Admin
28. r type numeric upper case lower case for random password More info Logon Manager User s Manual Logon Entries Screen Password change reminder Sphinx can prompt cardholder to change website or application password every specified number of days Setting can be established by end user in Sphinx Logon Manager software or Administrator in Sphinx CardMaker software as required Administrator can specify if end user will be allowed to change this setting More info CardMaker Administrator s Manual Configuration gt Card Settings gt Website Application Password Policy Password change verification Sphinx can prompt cardholder to verify that password has been changed in website or application This ensures that passwords remain synchronized since it would not be possible for Sphinx to automatically change a password in a third party website application logon location that is not linked to Sphinx via an API Until cardholder verifies that password has been changed in website application Sphinx will not accept password change Setting can be established by end user in Sphinx Logon Manager software or Administrator in Sphinx CardMaker software as required Administrator can specify if end user will be allowed to change this setting More info CardMaker Administrator s Manual Configuration gt Card Settings gt Website Application Password Policy Password repetition control Sphinx can prohibit the entry of up to four pr
29. t want to use the auto record feature for website logons can switch off this default setting and click on the Record button to initiate the recording of logon data The Record button is also useful for websites that don t adhere to typical logon procedures that Sphinx doesn t recognize as being recordable In any case whenever cardholder goes to a logon location which Sphinx has recorded Sphinx prompts cardholder to present card and enter PIN then automatically enters logon data and cardholder is logged on More info Logon Manager User s Manual Logon Entries Screen For website or application logon locations that don t have a unique address it s simple for cardholders to create a new logon entry in Sphinx and manually enter logon data Then to fill logon data simply open the logon entry in Sphinx and click on the Sphinx Logon Now button to transfer logon data to location More info Logon Manager User s Manual Logon Entries Screen Whenever cardholder goes to a website or application logon location that Sphinx has stored but which is not designated as auto fill Sphinx automatically pops up with the logon data so that cardholder can complete logon More info Logon Manager User s Manual Logon Entries Screen All logos and trademarks are the property of the originating company FEAT 0908 Page 5 of 15 Sphinx Feature List Browse to logon location End user can double click on a website or application entry in fro
30. upported can easily be integrated with Sphinx ISO 14443 A B supports ISO 14443 compatible RF cards through a number of contactless readers ODBC compatible with major database systems such as MS Access MS SQL Oracle mySQL LDAP interfaces with LDAP based directories such as Active Directory COM includes COM API for server and client based software XML includes API based on XML RPC function calls over IP Multi language Sphinx multi language tool enables convenient translation and 7 7 maintenance of the Sphinx program text files including Asian languages with double byte characters Also enables easy branding of software for OEMs Sphinx Logon Manager API OEMs who want to bundle Sphinx with other client applications P s gt for OEMs have the option to use the built in API to integrate further Sphinx CardMaker API for third Data elements of the Sphinx CardMaker database are accessible r party applications on server through standard ODBC API computer CardMaker features a flexible built in import function for LDAP and ODBC based data soruces This means that for example cardholder identification data can be imported from an HR or access control database without requiring any programming All managed entries are available via an API for third party identity management and provisioning systems Interfaces are based on ODBC LDAP and XMP RPC standards Open Domain Sphinx Solutions Inc www odsphinx com All logos
31. ws PKI certificate based logon to Windows based functions More info Notes All logos and trademarks are the property of the originating company FEAT 0908 When Sphinx is used with a Public Key Infrastructure PKI the Sphinx PKI middleware provides standard CSP and PKCS 11 card interfaces which enables the card to be used for certificate Sphinx Logon Manager for end user computers Sphinx Logon Manager for end user computers Sphinx CardMaker for administrator computer Sphinx Logon Manager for end user computers Sphinx CardMaker for administrator computer PKI middleware for all computers Sphinx Sphinx Enterprise Feature Description Standalone Enterprise PKI End user presents card to card reader and enters card PIN to logon to Windows Sphinx transfers logon data to Windows logon process transparently so that keystrokes cannot be observed or Standard Sphinx installations use Microsoft GINA based logon to Windows Sphinx Logon Manager software reads user name password domain from card or card server for proximity cards and passes this data to the Windows logon process on the end Does not replace or change Microsoft GINA only interacts with relevant functions Logon Manager User s Manual Settings Menu gt Logon to Windows CardMaker Administrator s Manual Configuration gt End user presents card to card reader and enters card PIN to logon to Windows The Microsoft logon process uses the Kerberos v5 w
32. ws session that has been locked by Windows secure screen saver or lock computer functions by presenting card and entering card PIN More info Logon Manager User s Manual Settings Menu gt Logon to Windows When end user changes Windows password in the Sphinx program password change will be synchronized with Windows so that end user does not need to enter the change twice Likewise if Windows informs end user at start up that their password has expired and end user changes password as prompted password change will be synchronized with Sphinx program More info Logon Manager User s Manual Settings Menu gt Logon to Windows Administrator can specify required Windows password length and 7 7 character type numeric upper case lower case in Sphinx CardMaker software and end user must conform to these Page 3 of 15 Sphinx Feature List requirements when entering or changing Windows password More info CardMaker Administrator s Manual Configuration gt Card Settings gt Windows Password Policy Generate random When end user changes Windows password he can generate a P V V Windows password random password that conforms to the installation s Windows Password Policy if applicable If installation has no Windows Password Policy end user can specify password length and character type numeric upper case lower case for random password More info Logon Manager User s Manual Settings Menu gt

Sphinx Feature List - Open Domain Sphinx Solutions

Contents

Download Pdf Manuals

Related Search

Related Contents