SafeNet Authentication Client (SAC) is a public key infrastructure (PKI) middleware that provides a secure method for exchanging information based on public key cryptography, enabling trusted third-party verification of user identities. SAC enables the implementation of strong two-factor authentication using standard certificates, as well as encryption and digital signing of data. The SAC generic integration with CAPI, CNG, and PKCS#11 security interfaces enables out-of-the-box interoperability with a variety of security applications, offering security for web access, network logon, email, and data. PKI keys and certificates can be created, stored, and used securely with the hardware or software tokens.
This document provides guidelines for deploying certificate-based authentication (CBA) for user authentication to Lieberman RED Identity Management using Gemalto tokens or smart cards. It is assumed that the Lieberman RED Identity Management environment is already configured and working with static passwords prior to implementing Gemalto multi-factor authentication.
The integration environment that was used in this document is based on the following software versions: