Identity consolidation and privileged access management across Windows, Linux, and UNIXEnterprise Edition
Detailed auditing of privileged user sessions on Windows, Linux and UNIXPlatinum Edition
Dynamic segmentation and isolation of cross-platform systemsApplication Edition
Secure, centralized single sign-on to on-premises business applications
Single sign-on and unified management for cloud and mobile apps and devicesMac Edition
Centralized security and management for Macs and mobile devicesPremium Edition
SaaS and Mac Editions combined with mobile security management
Centrify DirectControl for Web Applications is the first solution that extends Microsoft's Active Directory Federation Service (ADFS) to web applications running on non-Microsoft platforms. With the Centrify solution, you can leverage Microsoft ADFS to provide secure, federated identity management for applications hosted on Apache and popular J2EE web servers, including Apache Tomcat, BEA WebLogic, IBM WebSphere and JBoss.
Microsoft ADFS is included as part of Microsoft Windows 2003 R2 Enterprise Edition. See Centrify's Support for Windows Server 2003 R2 for information on how we support other R2 interoperability features.
By deploying Microsoft ADFS and Centrify DirectControl for Web Applications as your cross-platform federation solution, you immediately realize the following benefits:
Microsoft ADFS enables secure web single sign-on (SSO) for web applications in two distinct scenarios: for companies that want to provide employees of business partners with SSO to their portal applications; and for server farm-based consumer web sites that comprise multiple applications, each of which runs in its own security context. Centrify DirectControl for Web Applications provides the cross-platform solution in both these scenarios.
In both of these federated identity scenarios, the ADFS federation server can communicate only with a web application running on Microsoft IIS. As a component of its DirectControl suite, DirectControl for Web Applications provides a web SSO module that enables web applications running on non-Microsoft platforms to look and behave exactly like an IIS server to the ADFS federation server.
Just like Microsoft's SSO module on IIS, the DirectControl web SSO module you install on your web server performs two essential functions:
The DirectControl web SSO module seamlessly integrates a non-Microsoft web application into your ADFS infrastructure. Just install the DirectControl web SSO module on the server hosting the application and you're ready to go.
Securing access to a web application is only part of the security equation. The underlying operating system also needs to be secure against unauthorized access. In addition to supporting ADFS, Centrify DirectControl for Systems also integrates the underlying UNIX or Linux operating system with Active Directory. You can centralize administrative accounts and privileges in Active Directory, and use Group Policy to enforce security and configuration policy. And DirectControl is the only Active Directory-based solution that enables you to create separate management groups (Zones) to give you granular administrative control and the ability to quickly integrate multiple UNIX/Linux profiles and identities into Active Directory.
Request a Free Evaluation of Centrify Suite for Web Apps
Leveraging Active Directory-Based Single Sign-On to Address Security and Compliance for Web and Enterprise Applications
Single Sign-On for Web Applications