My Experience with HID DigitalPersona
After using HID DigitalPersona i log into my work system using my fingerprint rather than the old method of entering username and password …
Starting at $3.75 per user per month
View PricingOverview
What is HID DigitalPersona?
HID DigitalPersona (formerly Crossmatch) provides a comprehensive multi-factor authentication solution. The vendor’s value proposition is that their solution frees users from cumbersome login activities while making it easy for an IT Team to secure access to their networks, data and…
Recent Reviews
Awards
Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards
Reviewer Pros & Cons
Pricing
HID DigitalPersona
$3.75
On Premise
per user per month
Entry-level set up fee?
- Setup fee required
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting/Integration Services
Product Details
- About
- Competitors
- Tech Details
- Downloadables
- FAQs
What is HID DigitalPersona?
The HID DigitalPersona multi-factor authentication software offers a new way to provide authentication services to users. Whereas traditional 2FA/MFA solutions are stuck on “what you have/what you know”, DigitalPersona leverages an array of authentication methods to access public and corporate network resources. Enterprise users can gain access to their cloud applications, such as Microsoft 365, VPNs, corporate networks, Windows desktops, and Citrix applications . Consumers can confirm their identity and authenticate transactions.
Balancing security and usability, HID DigitalPersona boasts one of the widest arrays of authentication factors in the industry. This includes one-time passwords, mobile-based push, smartcards, security keys, risk- and context-based methods, and biometrics, such as fingerprint, face, and behavioral keystroke.
HID DigitalPersona Competitors
- The Okta Identity Cloud
- Imprivata OneSign
- Idaptive Next-Gen Access (formerly Centrify)
HID DigitalPersona Technical Details
| Deployment Types | On-premise |
|---|---|
| Operating Systems | Windows |
| Mobile Application | Apple iOS, Android, Windows Phone |
| Supported Countries | Most Countries except companies included in US Embargo |
HID DigitalPersona Downloadables
Frequently Asked Questions
HID DigitalPersona (formerly Crossmatch) provides a comprehensive multi-factor authentication solution. The vendor’s value proposition is that their solution frees users from cumbersome login activities while making it easy for an IT Team to secure access to their networks, data and applications.
The Okta Identity Cloud and Imprivata OneSign are common alternatives for HID DigitalPersona.
Reviewers rate Usability and Support Rating and Implementation Rating highest, with a score of 9.
The most common users of HID DigitalPersona are from Mid-sized Companies (51-1,000 employees).
Comparisons
Compare with
Reviews and Ratings
(172)Attribute Ratings
Reviews
(1-2 of 2)Companies can't remove reviews or game the system. Here's why
We currently use Digital Persona Altus in our enterprise environment with over 500+ computers and up to about 800+ users. We implement biometric (fingerprint) access for all computer authentication in the network and for some managed applications that require enhanced security measures. We are about to roll out token authentication for a few departments that are now requiring improved measures of secure access and authentication of users.
- Biometric Authentication - easy to set up and manage. Simple to deploy and enrollment of users.
- Managed Passwords - The ability to require specific applications to use two factor authentication or even fingerprint only is a very useful tool.
- Software OTP - The new features of Altus including the OTP tokens - for use with your mobile phone app is particularly handy.
- Licensing - We find that licenses are used or allocated for users that won't even use the Altus authentication, bring about wasted costs of excessive and unnecessary licensing.
- The biggest con so far has been the inability for technical support or the Crossmatch company to provide specific compatible hardware to use with the smart card or proxy authentication. We have yet to find a compatible solution to implement this and their support has been useless so far.
We haven't tested or used the features for VPN or cloud. We have found that the ease of use for Windows logon is a benefit for some of our less technical users. Facial recognition has been a blessing for those users that do not have fingerprints or a mobile device to use OTP.
We have greatly benefited from this feature, as we are a MS AD environment. Being able to successfully authenticate users using not only secure but different features depending on the work zone has helped a lot. Being able to provide two factor or even three factor in some instances to protect the user, machine and data is wonderful.
All our platforms are pretty much Windows 7 desktops, in-house applications, and some proprietary applications specific to a department. We also utilize the kiosk setup for public users for public information lookup. This allows the department users to log in with their credentials (fingerprints) to reset any software or windows for the general public or to reboot the machines, reducing the calls for IT to assist with lockouts.
We do not currently use Microsoft Azure Active Directory at this time. We have no comment for this topic.
- Positive impact would be the knowledge that our systems are safe from un-authorized users accessing certain programs or machines by using a shared or stolen password. By using biometrics we eliminate the sharing of passwords among users to ensure proper authentication and auditing of users.
No
- Price
- Product Features
- Product Usability
- Prior Experience with the Product
Testing and trialing other vendors.
No
We were having an issue with hardware tokens working with the system or not being compatible. Crossmatch went above and beyond to assist with testing vendor tokens for use.
- Enrolling new user credentials
- Installation of software on DCs and end user clients
- Setting up Kiosks
- Managed passwords for certain applications
Yes
for One Time Password use - mobile app
April 12, 2019
DigitalPersona stands by their product and their level of support and quality of product is exceptional.
Digital Persona is used to speed up the login process for transactions processed by the application operators as well as to collect biometrics (fingerprint) for customers. In addition to that, in both (operator or applicant) processing of fingerprints, we use Digital Persona to store, match and compare fingerprints as to avoid fraud on the operator side and the applicant side.
- Digital Persona does particularly well on fingerprint matching to authenticate users' credentials via Fingerprint against Active Directory.
- Digital Persona does well on providing active directory tools for troubleshooting problematic fingeprints.
- DigitalPresona provides intuitive wizards for enrolling, re-enrolling and un-enrolling users' fingerprints from active directory.
- Digital Persona authentication process is quite fast. It takes less than 1 second from the time one captures the fingerprint to the time the user is authenticated.
- Digital Persona does not have a granular auditing method for generating reports of active users and the last time a specific user or users were last successfully authenticated or attempted to authenticate in active directory. This functionality can provide significant value to customers, especially for customers where the number of licenses ranks in the thousands. This would allow customers to revoke a license from users who do not use their fingerprint for authentication.
- Digital Persona does not have the ability to purge stale fingerprints to free up licenses that have been assigned to users who do prefer not to use their biometric login, users who have left the company or moved on to a different department. Having the ability to purge stale users' biometrics (and licenses) can potentially save customers licensing fees.
- Digital Persona does not have the ability to run reports for stored biometrics. It could potentially prove useful to be able to run reports of say 5000 users and have a breakdown of fingerprint quality spectrum. This could potentially alleviate administration overhead by identifying stored problematic low-quality fingerprints for users.
- Digital Persona should have its own GUI Based Administration Utility to have one central point of administration including identifying which accounts have not used fingerprint login as to free up unused licenses, license reporting and type of DigitalPersona Feature used.
Having multiple authentication methods provides wide versatility for the enterprise. A corporation can opt for using simply windows fingerprint logins, use API feature to capture fingerprints for applicants via web-based browser applications, use API to design custom windows applications and use API to authenticate users into the application itself as well as use the fingerprint reader to capture customer biometrics and use this to accomplish the desired software functionality.
We use several DigitalPersona features, Active Directory integration allows us to use Windows Biometric (Fingerprint) login on workstations where more restricted access is required.
We are using DigitalPersona to protect Windows based systems and in-house web-based Microsoft .NET applications. The DigitalPersona platform does extend to Unix/Linux but for our implementation requirements, we initially did not need their alternate solution but we now have a Unix/Linux implementation and having DigitalPersona's versatility paid off by allowing us to incorporate and extend the usage and close the gap between Windows & Unix Systems, allowing our applications to exchange biometric data between multiple platforms.
- For our situation, Digital Persona for processing applicants is not an option but a requirement. For the system operators DigitalPersona is also an auditing requirement and a necessity in order to automate processing of applicant transactions throughout the day.
- Digital Persona having joined forces or I should say, merged with Crossmatch has helped standardized the software engineering process for transacting applicants and authentication of operators as well as streamlined the software engineering effort required for performing fingerprint matching.
- Digital Persona has gone above and beyond in providing us customized support to allow us to tailor their software to our specific needs.
DigitalPersona initially had issues in the fingerprint quality aspect and live view functionality for capturing fingerprints. This was initially a setback when we had to use new SDKs(Drivers) for fingerprint readers we had already writing software for. Instead of DigitalPersona rewriting features and functionality already provided by Crossmatch, they started, in my opinion, from scratch and this created a delay in our software delivery process as it required hours of software engineering and testing.
Overall however, DigitalPersona's service and support at all levels, was exceptional. They stood by their product, supported us day after day and provided software engineering support every time it was requested.
4500
Unable to disclose the specifics functions due to security matters.
10
Software Engineers, System Engineers, System Administrators, Help Desk Support Engineers.
- Authenticating system operators into our management stations.
- Capturing customer biometrics for customized use.
- Application Authentication
- Fingerprint Matching
- Unable to disclose the specific methods we use the software for.
- Web Application credential biometric caching and authentication.
No
- Product Features
- Product Usability
- Product Reputation
- Prior Experience with the Product
- Vendor Reputation
- Existing Relationship with the Vendor
We purchased DigitalPersona primarily because it was the most familiar vendor and their hardware was already widely used in the technology industry.
I was quite pleased on the proof of concept and pilot phase when evaluating and selecting the vendor and hardware. Our company has had experience with Digital Persona vendor and other software and hardware vendors. Opting for going with DigitalPersona was the obvious choice as they are already an established vendor and they stand behind their hardware and software products.
- Implemented in-house
Yes
We used industry standard implementation process or our implementation, they were:
Development
QA
Integration Testing
System Testing (Stress Testing)
User Acceptance Testing
Production "Pilot"
Production Full Deployment
Change management was minimal
- We encountered typical software challenges when brewing our in-house software to interface with DigitalPersona API and Hardware.
- Driver issues which were later corrected with new driver releases tailored to address our specific problems.
Yes
Premium support is necessary as part of our ongoing customer support contract.
Yes
Understandably so, the troubleshooting spanned over a couple weeks but eventually the identified issues were resolved.
Last quarter of 2016 and we are currently working to reach out to Crossmatch again as part of a revamp to our software.
- Active Directory Authentication
- Fingerprint Enrollment
- Auditing and purging of seldomly used fingerprints