Category : Tools

Top 3 Identity Management Solution Recommendations

 Identity-Management-as-a-Service (IDaaS) provider aids with identifying individuals in a system (such as a country, a network, or an enterprise) and controlling their access to resources within that system by associating user rights and restrictions with the established identity.

okta

Okta Identity Management

Okta comes highly rated for identity management, and for good reason. Rated best-in-class for support of integrating multiple directories, as it allows for multiple identity providers without compromising data quality, support providers such as AD, Google Apps, and Workday. Beginning at $2 per user, per month and ranging up to $8 for the most advanced tier. Installation and set up of Okta is fairly easy. One of the first steps of set up involves connecting to an existing AD domain, which Okta offers an AD agent that will synchronize user and security group objects to the software’s cloud based Universal Directory. After downloading the installer and going through the basic wizard motions, you can start using the Okta Agent Manager to dabble with basic maintenacne tasks, adding domains, and configuring a proxy server. You can use Okta to make your life easier by configuring the software to pull employee information from a SaaS application, configured as master attricutes, fed back to AD, and therefore enabling changes to the group to be automatically populated. The functionality possibilities are really to whatever degree you decide to take it. Okta offers more than any other Identity Management in the game.

 

onelogin  OneLogin

OneLogin is another great Identity Management tool. It offers support for multiple security policies and roles and mapping functionality provide flexible management. OneLogin offers a free entry-level proving that makes it the ideal choice for small businesses. Their four tier model ranges from the free level offer to an $8 per user, per month option similar to that of Okta. The directory integration sets OneLogin apart in the enterprise, alomg with other expected features of a quality IDaaS, such as multiple security policies, mobile functionality for users, multifactor authentication, and SAML authentication. Some found OneLogin’s dependence on mappings to be confusing, so that is something to consider.

azureWindows Azure Active Directory

Best-in-class integration with both Active Directory (AD) and Office 365, as well as the most cost-effective option for multifactor authentication (MFA). Azure gets a significant boost up due to the tight integration with Microsoft Windows Server Active Directory (AD) and Office 365. Azure AD encompasses advanced toolsets for managing identities and identifying the Software-as-a-Service (SaaS) applications used within an organization. Microsoft has been a top industry leader for decades, which is why they have such a significant leg up in on-premise network directories. Azure AD’s pricing is very competitive compared to other IDaaS, offering a free tier, a Basic tier for $.50 per user per month, and a Premium tier that runs $6 per month.

 


 

If you would like to educate yourself in more detail about the information presented in this blog post, please click on the linked titles above.

 

Can entering a password be as easy as taking a selfie?

Most of us have heard of two-factor authentication, but photo login? This is an entirely new concept. Cloud-based security solution, LogMeOnce, has released PasswordLess PhotoLogin which allows users to sign into any website, just like one would expect from any password manager, but with a photo!

Two-factor authentication is a preferred extra layer of security that uses a password and username in combination with something that only the user has on them such as a a piece of information only the user knows or a physical token. With PhotoLogin, this second piece of information is a photo, taken on the desktop and then approved or denied via a trusted mobile device to gain access. So rather than a code being sent to your mobile device, the photo serves as the code.

When you click the PhotoLogin icon on the LogMeOnce home screen, you are prompted to snap a picture of yourself, or really anything you would like, even a stapler or your dog. The photo is then automatically sent to your linked mobile device where you can verify the image. The true protectors can swipe left and see data such as IP address, GPS location, and time stamp. Photos expire in 60 seconds and will self destruct after the first use, which ensures that you photo password is always unique. The LogMeOnce PhotoLogin update is free and available on Chrome, Firefox, Safari, as well as iOS and Android.

507574-logmeonce-photologin

 


 

If you would like to learn more about the material presented in this blog post, please visit: LogMeOnce Password Manager Adds Photo Login

 

 

5 New Tech Tested Products for Your Business

Ever wondered what the best in tech products are at this very moment? The experts at Network World weigh in and give us a little glimpse of the newest innovations on the market.

Vidder PrecisionAccess – By rendering applications invisible to unauthorized users PrecisionAccess does a fantastic job at preventing application hacking. Even with stolen credentials hackers can’t access protected applications with unauthorized devices.precision-vpn_clip_image002

VeloCloud SD-WAN – VeloCloud provides a hybrid WAN solution that works with MPLS private links as well as ATT-U-Verse with cable or any broadband DSL links. One tech pro reported an increase from almost zero network visibility to nearly 100% network visibility. A great tool for IT management across multiple locations without staff needing to be onsite at all times. Facilitates communication and network visibility.  velocloudlogo

Cisco Identity Services Engine (ISE) – With so many features that help with managing user-facing ports and devices, whats not to love about Cisco ISE. One huge factor reported by tech pros is the integration of TACACS within Cisco ISE, making it easy to run Cisco ISE as a Radius server or TACACS server for network devices. In addition to this, Cisco ISE significantly improves management of devices especially restricting machines from devices and sites they are not permitted to visit.Cisco_ISE

 

 

 

 

 

 

 

 

Intermedia SecuriSync – For backup and file sharing SecuriSync is the way to go. As a two-in-one tool for consolidated file backup and management of continuous file backups, Intermedia SecuriSync makes relevant files easier to access as they are all stored in a secured shared folder. If you have team members spread across different locations, this tool is very helpful in making sure the data is always backed up and kept secure. One platform with a master source keeps project collaboration as safe as it can be.securisync-logo-247x300

OpenSpan Transformation Platform – OpenSpan collects all employee desktop activities both productive and nonproductive, including time away from the computer. This platform allows businesses to evaluate from employee activities how employees work best and what can be improved upon in order to drive down operational costs and maximize revenue. Providing data about employee activities takes away the need for manual employee logs. Lack of employee logs that need to be analyzed by supervisors for key performance indicators (KPIs), such as call volumes, proves to be a huge time saver. OpenSpan Transformation Platform takes working smarter to a higher level.

yKVWo9CQ_400x400


If you would like to educate yourself in more detail about the information presented in this blog post please visit: Fave Raves: 29 tech pros share their favorite IT products 

Software Defined Networking – 5 best practices

software-defined-networking_sdn

Software Defined Networking, (SDN) provides cost-effective, easily adaptable management of network control and forwarding functions. In simple terms, SDN is the physical separation of the network control plane from the forwarding plane, where a control plane controls multiple devices. Software Defined Networking is an emerging technology and therefore lacks long term examples to be used as a guideline for success. Greg Stemberger, Principal Solutions Architect, has laid out what he has seen in his experience with SDN, creating a five step process for best practices of implementation.

The first step, as it most often it with any new technology employment it to define usage. Bringing in a new technology for your company is only helpful if the technology fits the needs of your organization. Determine the problems your company is facing and proceed to evaluate whether the desired technology will be able to handle and alleviate such problems accordingly. No one technology will be able to solve all your problems. Identify specific problems you believe SDN can fix, specifically just one problem at a time. As Stemberger suggests, “A single use case with tangible, positive results, offers more reliable, measurable outcomes than implementing SDN across your entire network.”

It is crucial to assemble a cross functional team with SDN. Utilizing SDN in the correct manner means having a skilled team with a united approach. A team of well versed members is the best way to manage SDN. You need people who can combine skill sets to work together. Increasing efficiency lets you IT staff spend more of their time on you IT infrastructure rather than operational overhead. Get everyone on the same page, toward a universal goal.

Remember to test in a less critical network area. This is common sense for most. Find a less critical network that you can play with first before moving to your network. This way you avoid uprooting your entire network and facing the wrath of angry coworkers. A small-scale SDN test allows the flexibility to learn and make mistakes.

After testing for a while, make sure to go over the data you gather and review your test case. Did it solve your current problem? Is it a wise investment to expand SDN to the entire network? Do you have the infrastructure ready on both a personnel and technical level?

As a gentle reminder that it’s okay to stay on the cautious side, it is suggested that you gain maturity before expanding deployment.  Rather than diving head first, proceed slowly and make the implementation gradual. Even if the SDN went better than expected in one area of the network, this is not a gurantee that the entire network will function at the same caliber. How will SDN performance change across higher trafficked areas of the network?

These steps are meant to evaluate risks, gain perspective and ensure efficiency. In order to get the most out of Software Defined Networking, it’s best to get all your ducks in a row.


If you would like to educate yourself in more detail about the information presented in this blog post please visit: 5 steps to launching Software Defined Networking

VMware takes on the big boys with Boxer app for AirWatch

VMware launched a new version of the Boxer iOS app earlier this month and its pretty awesome. The app is for companies using VMware to manage their employee’s mobile devices VMware Boxer is available for both AirWatch and Workspace One customers. The app includes some attractive features, not surprising as Boxer is intended to replace the preloaded Mail feature on the Apple iPhone and iPad.

screen-shot-2015-10-15-at-9-03-16-amThe new app allows for preference customization such as change of sound when new emails arrives. You can also take different actions by swiping email messages, and easily bulk edit messages. The app combines email and calendar taking away the need to navigate away from Boxer in order to see your calendar events. Similar to other applications put forth by Microsoft and Google in terms of functionality.

Boxer VMware will be made free for AirWatch users on the orange, blue and yellow plans. For those who have already committed their email needs to VMware, no need to worry. If you are one of the many that still want VMware purely for email management, VMware will release a special build on the app that will let consumers more more slowly and provide more time between updates. Most consumer and commercial users will be presented with rapid release updates as they are made available, but the extra feature for businesses that wish to update at a slower pace is an attractive option.


 

If you would like to educate yourself in more detail about the information presented in this blog post please visit: VMware goes after Outlook with Boxer email app for Airwatch

 

Two-Factor Authentication Evaluation Guide

Two-factor Authentication is a type of multi-factor authentication that provides identification of users using a combination of two different components. These components are often something the user knows, possesses, or something that is inseparable from the user. This Guide has been adapted from Duo Security, and illustrates what to consider when deciding upon a vendor for Two-factor Authentication for your company.WP17

Security

 

In order to enforce this extra layer of protection it is important to consider the factors involved. Security and ease of implementation should be of first priority. The vendor in which provides your two-factor authentication should be secure by design. The cloud based service should use multiple, independent PCI DSS Level 1 and ISO 27001-certified, SAS 70 Type II-audited service providers and is split across multiple geographic regions, service providers and power grids for seamless failover. This ensures that you have a reliable vendor that has an infrastructure that is fully scalable and elastic enough to be able to accommodate any number of users. You should be able to add users as you need them without issue. The vendor should also be backed by a strong service level agreement and the service should offer 24/7 operational coverage.

Cloud-based authentication services are easy to use and tend not to require installation of hardware. Selecting a vendor with drop-in integrations for all major VPNs, Unix, and MS remote access points. Something to look for is deployment. The two-factor authentication process is best implemented when it leverages a platform users already have, such as cell phones. Make sure the service you employ works with landlines and tokens to save your IT administrator from having to manage tokens.

Usability

Usability and convenience are a major part of making two-factor authentication a productive solution. A vendor that keeps a lot of “clutter” such as extra steps gets in the way of the login path and makes for a large and unneeded distraction. Allowing users to easily enroll themselves and set their preferred devices to use for authentication makes the login process easier. This should be met by a vendor that supports a wide range of authentication methods including push to mobiles app, passcode and phone call back.

Administration

When choosing the ideal vendor, make sure the administrative needs are met. For instance, consider if the solution allows for visibility insight into user access of your network. Authentication logs should be provided for auditing and reporting. Systems that provide a centralized admin interface give a consolidated view of how the two-factor authentication is working, and allows for better maintenance. It would be best if the system managed the physical tokens rather than forcing you to manage such items. In addition if you are looking for a cost effective solution, cloud hosted vendors have the lowest costs and least amount of hassle because the infrastructure, upgrades and maintenance are all managed by the vendor.

 

 

If you would like to educate yourself in more detail about material presented in this blog post please visit:

http://hosteddocs.emediausa.com/duo-security-twofactor-evaluation-guide.pdf

Anti-Virus Protection For XP Users| BVA INC. emPowering Your IT

Now that Microsoft has stopped supporting Windows XP, this marks the end of security patches. If you are still using Windows XP this leaves your computer vulnerable to various viruses. According to this article, Bitdefender, Kaspersky, and Panda are three top rated anti-virus protection software products that scored high on the AV-test. To read more about AV-testing and anti-virus programs click on this link.

Bluetooth Enabled Stylus

My search for a stylus for my iPad is finally over!  I have owned at least a dozen different models of stylus over the years, and have not been thrilled with any of them.  Usually, they would tap on the screen without trouble, but dragging things across the screen was a total fail!  Now I am using a Bluetooth enabled “Pencil” by 53 and I couldn’t be happier!  There are currently 2 models available ranging in price from $59.95 – $74.95 plus you get full access to their app…appropriately called “Paper.”  This stylus is great for the creative types who want to draw or paint on their iPad or for the techie who just wants to have the best option currently available! 

Has Faxing become Extinct?

Here at BVA 90% of what I see coming into the office is advertisment. I was reading an article today about the upward momentum using fax machines have been getting lately. There are a couple of things that I either didn’t realize or I didn’t think about when it comes to using faxes.

For one thing it’s somewhat safer comparing it to e-mailing. There are more options now with faxing since when it came out over two decades ago. Companies can do cloud-based faxing, fax servers, and on-premise fax options. With on or off premise along with hyrid options the sky is the limit.

According to Davidson Consulting they state that FoIP market will groww possibly 10% in the next 4 years. So the next time you look at your fax machine collecting dust think about the possibilities.

Citizen Eco Drive Proximity Bluetooth Watch

I recently was looking at watches and found this neat little thing. What I found neat about this watch is that it is equipped with Bluetooth and allows you to receive notifications for calls and emails from your iPhone 4S or IPhone 5. It also includes a perpetual calendar, date display, and three chronograph sub dials. It’s also water resistant and harnesses the power of light so you never need a battery. I know I want one.

 

http://youtu.be/uAq1j1dvJYI