Login
    Contenu x
    Server side components
    • 30 Dec 2024
    • 2 Minutes à lire
    • Sombre
      Lumière
    • PDF
    Contenu

    Server side components

    • Mis à jour le 30 Dec 2024
    • 2 Minutes à lire
    • Sombre
      Lumière
    • PDF
    The content is currently unavailable in French. You are viewing the default English version.
    Résumé de l’article

    What is OneSpan Authentication Server?

    OneSpan Authentication Server is a server product to support the deployment, use, and administration of OneSpan Digipass authenticator technology.

    OneSpan Authentication Server supports the following primary functions:

    • Authentication using one-time password (OTP)
    • Signature validation
    • Software authenticator provisioning
    • Administration and reporting
    • Auditing

    OneSpan Authentication Server can be integrated with existing custom applications using a Software Development Kit (SDK). It is designed to be easily usable with web applications, but also provides its own Administration Web Interface.

    What is OneSpan Authentication Server Appliance?

    OneSpan Authentication Server Appliance secures internal and remote access to network applications, and remote access to applications that are offered online. It is a stand-alone appliance that provides an authentication solution based on OneSpan Authentication Server. Together with Digipass technology that provides the client-side component, the solution delivers strong two-factor authentication.

    OneSpan Authentication Server Appliance is a simple and cost-effective solution, which can easily be integrated into existing IT infrastructures to support authentication in small to medium-sized enterprises. The product integrates additional configuration features via the Configuration Tool, including:

    • Simple installation and maintenance
    • Remote support from OneSpan experts
    • Manual updates
    • Simple licensing
    • Backup and restore functionality
    • Real-time feedback on system status with statistics

    Structure of OneSpan Authentication Server Appliance

    OneSpan Authentication Server Appliance architecture

    Figure: OneSpan Authentication Server Appliance architecture

    OneSpan Authentication Server Appliance consists of:

    • OneSpan Authentication Server (see What is OneSpan Authentication Server?)
    • Internal ODBC database

    • Three user interfaces (see Administration):

      • OneSpan Authentication Server Appliance Configuration Tool. Intended for system administrators for installation and maintenance.
      • OneSpan Authentication Server Administration Web Interface. Intended for everyday system administration.
      • OneSpan Authentication Server Appliance Rescue Tool. Intended for administrators to set the IP address, rescue the first administrator, and manage other limited settings.

    OneSpan Authentication Server Appliance supports different client applications including:

    • Digipass Authentication for Windows Logon (SOAP)
    • SOAP authentication
    • RADIUS authentication
    • IIS authentication
    • Software authenticator provisioning (SOAP)
    • Electronic signature validation (SOAP)

    Additionally, OneSpan Authentication Server Appliance can integrate back-end authentication with RADIUS or LDAP, for example Microsoft Active Directory or NetIQ eDirectory.

    Communication protocols

    Communication protocols include:

    • RADIUS
    • SOAP
    • SEAL

    RADIUS

    The RADIUS protocol can support three services (RADIUS AAA):

    • RADIUS Authentication is supported by OneSpan Authentication Server Appliance (see Supported RADIUS protocols.
    • RADIUS Accounting is supported by OneSpan Authentication Server Appliance. With a RADIUS back-end server, Accounting requests are forwarded to the back-end server and handled by proxy. Without back-end authentication, audit messages are generated.

    • RADIUS Authorization handles requests for an authentication client to use a particular service. In the RADIUS protocol, attributes are used for authorization and configuration of the remote access session in many cases. OneSpan Authentication Server Appliance can return authorization attributes from the user account, or these attributes may be retrieved from a separate RADIUS server, i.e. a RADIUS back-end server.

      An existing RADIUS server may be used as a back-end system to allow dynamic creation of user accounts, verification of static passwords, or to retrieve RADIUS attributes for a user (see User attributes).

    SOAP

    SOAP over HTTPS versions 1.1 and 1.2 are supported. Document Literal binding is used. A variety of SOAP client SDKs have been tested.

    SEAL

    The SEAL protocol is a proprietary OneSpan protocol used by Digipass Authentication Module products.

    What is OneSpan Authentication Server Virtual Appliance?

    OneSpan Authentication Server Virtual Appliance is a virtualized version of the physical OneSpan Authentication Server Appliance that supports the most popular hypervisor products. It delivers the same security features and functionality as the standalone hardware version of OneSpan Authentication Server Appliance and offers the benefits of virtualization, e.g. cost savings and rapid development and provisioning.

    Cet article vous a-t-il été utile ?
    What's Next
    Change password!
    Changing your password will log you out immediately. Use the new password to log back in.
    Change profile
    Success!
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.
    Logout
    ESC

    Ozzy, facilitant la découverte de connaissances grâce à l’intelligence conversationnelle