Access-control vendor BitKoo Monday unveiled an authentication and authorization gateway that lets users control internal and external access to Microsoft's SharePoint server.
BitKoo's Keystone SP also provides auditing, reporting, delegated administration and the ability to validate user access-control settings periodically. Keystone was developed inside The Walt Disney Co. as the foundation for its internal identity-management system before Bitkoo took the platform commercial.
SharePoint has become one of the fastest-growing products in Microsoft's history despite some of its limitations in securing full-scale enterprise rollouts. Those limitations include a lack of sophisticated access controls beyond SharePoint's document-specific controls, and the need for third-party add-ons to support corporatewide rollouts.
SharePoint does provide a limited number of access controls via its integration with Active Directory, but integration with third-party systems is complicated or impossible. Users also can use Keystone SP to eliminate Active Directory from the SharePoint security equation.
Keystone SP is a gateway that sits between SharePoint and any number of authentication and authorization platforms, including those based on the Lightweight Directory Access Protocol, Kerberos and RADIUS.
When SharePoint needs to talk to an authentication provider, it does so through Keystone SP, a process that lets users add or replace authentication technologies without having to modify SharePoint.
For the server to recognize Keystone SP, users have to install a Dynamic Link Library on the SharePoint site and alter one configuration field in SharePoint. Once data begins to flow through Keystone SP, users can take advantage of such features as delegated administration, segregation of duties, auditing and reporting.
"SharePoint is pretty good for departments, but for the enterprise, we add that missing link in security, audit, reporting and compliance," said Doron Grinstein, CEO of BitKoo, who wrote the Keystone code while at Disney.
To deal with users outside the firewall, Keystone SP includes BitKoo's SecureWithin technology, which allows internal resources to be exposed only to authorized clients. SecureWithin does not require a VPN, DMZ replication, or network or firewall reconfiguration to provide access to outside users securely. In addition, Keystone SP can determine a user's role in the organization and assign group permissions based on that role.
Keystone SP ships with an import tool that pulls SharePoint's existing authentication and authorization attributes into Keystone. The platform also has a feature called Directory Sync, which keep SharePoint attributes aligned with information in directories and other use repositories.
Pricing for Keystone SP, which includes SecureWithin, starts at US$25,000.
Read up on the latest ideas and technologies from companies that sell hardware, software and services. Everything you need to know about email and web security (but were afraid to ask)
CRM your salespeople will love
Gaining Competitive Advantage Through Enterprise Planning
Discover the advantages of an open architecture multi-vendor network solution
Achieving the impossible: Unlimited application scalability
Mimosa™ NearPoint™ for Microsoft® Exchange Server: Email Archiving 101
Strategies for Eliminating .PST Files
How to improve employee productivity in small and medium businesses
Zones provide focussed content from Computerworld and leading technology partners.
Discover how SOA can create smarter outcomes for your business.
Attend and learn:
- How SOA is helping leading companies to become more agile
- Where you should be applying SOA processes in your company
- The top SOA implementation mistakes to avoid
Click here for more information.
- +
Computerworld Live Podcast #97: The Future of Enterprise Networking 25/07/2008 09:45:36
This week CW Live chats with Mark Thompson, global sales and marketing manager for HP ProCurve, on the future of the enterprise networking. Mark discusses the trends we can expect to see in the near future and how the right infrastructure can ensure your enterprise network is secure. - +
Computerworld Live Podcast #96: Security at the Edge 11/06/2008 09:22:22
CW Live speaks with Amol Mitra, HP ProCurve Director of Marketing for Asia Pacific and Japan. Today's topic: how enterprises are starting to shift away from simply controlling security via server logins, firewalls and moving to more adaptive security frameworks. - +
Data Management Edition #10: Multi-Petascale Systems 02/05/2008 09:12:33
This week we look at sustainability and the development of multicore technologies to build multi-petascale systems. - +
IT Security Edition #11: How to poison the Storm botnet 01/05/2008 08:51:55
This week CW Live presents a case study on how to poison the notorious Storm botnet . Plus we take a look at Cisco's plans for Ironport. - +
IT Security Edition #10: Cyber-battles fought and won 24/04/2008 11:09:47
Vendors bow to end user pressure to improve product security, and we take a look at the latest concepts shaping the cyber-battlefield of the future.
FrontRange Solutions launches HEAT Plus Mobile to reduce help desk costs and improve service management productivity 2008-12-02 15:15:00+11
AARNet Helps to Advance Indigenous Health 2008-12-02 12:44:00+11
Orbis selects Telstra International as its data centre partner for the UK, Europe and Middle East Region 2008-12-02 11:23:00+11
ComOps Deploys Corporate Performance Reporting Solution For Healthcare Test Manufacturer 2008-12-02 10:09:00+11
Mornington Peninsula Shire implements Objective to manage knowledge and deliver service excellence 2008-12-02 09:56:00+11
How to Beef Up Your Sales Pipeline
Our economy may be heading towards a recession. Sales rates are dropping. Promotional campaigns are proving less effective than you would like. So how do you continue to grow your business and bring home the sales in such an environment? Download this white paper now to find the answers.
Buying Guides
Buying Guides
