Active Directory-based authentication, access control and role-based privilege management for Windows, Linux & UNIX
Standard Edition + privileged user auditing
Enterprise Edition + encryption of data-in-motion and server isolation
Any Edition + single sign-on for SAP, Apache and J2EE/Java applications
Single sign-on for cloud apps + mobile device supportMac Edition
Active Directory-based authentication and Group Policy management for Macs + mobile device supportPremium Edition
SaaS and Mac Editions + mobile device supportCentrify for Samsung KNOX
Active Directory-based SSO, MCM and MDM for KNOX-enabled devices
Centrify DirectControl for Web Applications is the first solution that extends Microsoft's Active Directory Federation Service (ADFS) to web applications running on non-Microsoft platforms. With the Centrify solution, you can leverage Microsoft ADFS to provide secure, federated identity management for applications hosted on Apache and popular J2EE web servers, including Apache Tomcat, BEA WebLogic, IBM WebSphere and JBoss.
Microsoft ADFS is included as part of Microsoft Windows 2003 R2 Enterprise Edition. See Centrify's Support for Windows Server 2003 R2 for information on how we support other R2 interoperability features.
By deploying Microsoft ADFS and Centrify DirectControl for Web Applications as your cross-platform federation solution, you immediately realize the following benefits:
Microsoft ADFS enables secure web single sign-on (SSO) for web applications in two distinct scenarios: for companies that want to provide employees of business partners with SSO to their portal applications; and for server farm-based consumer web sites that comprise multiple applications, each of which runs in its own security context. Centrify DirectControl for Web Applications provides the cross-platform solution in both these scenarios.
In both of these federated identity scenarios, the ADFS federation server can communicate only with a web application running on Microsoft IIS. As a component of its DirectControl suite, DirectControl for Web Applications provides a web SSO module that enables web applications running on non-Microsoft platforms to look and behave exactly like an IIS server to the ADFS federation server.
Just like Microsoft's SSO module on IIS, the DirectControl web SSO module you install on your web server performs two essential functions:
The DirectControl web SSO module seamlessly integrates a non-Microsoft web application into your ADFS infrastructure. Just install the DirectControl web SSO module on the server hosting the application and you're ready to go.
Securing access to a web application is only part of the security equation. The underlying operating system also needs to be secure against unauthorized access. In addition to supporting ADFS, Centrify DirectControl for Systems also integrates the underlying UNIX or Linux operating system with Active Directory. You can centralize administrative accounts and privileges in Active Directory, and use Group Policy to enforce security and configuration policy. And DirectControl is the only Active Directory-based solution that enables you to create separate management groups (Zones) to give you granular administrative control and the ability to quickly integrate multiple UNIX/Linux profiles and identities into Active Directory.