Domain login with built in self-service lifecycle management and seamless directory provisioning.

AuthentXware is the only application that integrates a smart card minidriver and full middleware while also allowing credential management activities such as card unlock, certificate updates, biometric logon, and key recovery. AuthentXware provides functionality that is crucial to any logical access control program. Moreover, it does so while conforming to widely accepted standards such as Microsoft Base Smart Card Cryptographic Service Provider (Base CSP), Microsoft Cryptography Application Programming Interface (API), and NIST SP800-73-3.

AuthentXware is ideal for Agencies seeking HSPD-12, OMB M-11-11, and FICAM compliance. When paired with other products from the AuthentX identity management line, it can support single-sign-on (SSO) or limited sign-on. AuthentXware supports several customers with domain login and self-service lifecycle management.

Lifecycle Management

AuthentXware is unique in its ability to support PIV card lifecycle activities. In conjunction with the AuthentX IDMS, AuthentXware allows desktop users to perform basic card maintenance activities. Streamlining these functions saves time and reduces expenses for help desk and PIV card enrollment and issuance centers, which can instead keep staff focused on mission-critical projects. Our AuthentX IDMS/CMS is the core enabler for multiple card functions such as:

  • PIN Reset
    Vastly reduces help desk calls — and lifecycle costs — by allowing users to reset their own PIN codes.
  • Certificate Updates
    Reduces maintenance costs for updating or renewing PIV card certificates by allowing authenticated users to perform this function from their workstations.
  • Key Escrow
    Supports key escrow requirements with legacy PIV credentials that are not currently stored on the card.
  • Biometric Support
    Enhances security by incorporating an additional authentication factor. Biometric support serves as an alternative to basic PIN entry as well as a form of identity verification for certificate updates.