HID DigitalPersona

HID DigitalPersona
Formerly Crossmatch

Customer Verified
TRUE
Score 8.5 out of 10
TRUE
HID DigitalPersona

Overview

What is HID DigitalPersona?

HID DigitalPersona (formerly Crossmatch) provides a comprehensive multi-factor authentication solution. The vendor’s value proposition is that their solution frees users from cumbersome login activities while making it easy for an IT Team to secure access to their networks, data and...
Read more

Recent Reviews

Read all reviews

How HID DigitalPersona Differs From Its Competitors

Use Cases

The management of Mobile Applications using the HID DigitalPersona is quite perfect and the capability to manage App performance is incredible. HID DigitalPersona On-Premise functionalities are profitable and help with project time management and the Cloud services monitoring functions are …
Continue reading

Active Directory Integration

Through the effective integration with Microsoft Active Directory the dataflow is excellent and the security environment offered allows easy handling of all business data type without risking and the data connectivity is perfect and easy. The Cloud data modeling functions are also flexible to …
Continue reading

Applications Protected with HID DigitalPersona

Multiple Mobile Applications and different Cloud platforms transform multiple business data, project information, and other customer data. The protection provided by HID DigitalPersona is extremely effective and its overall quality of Cloud services management is very profitable and clean reports …
Continue reading

Azure AD Multi-Factor Authentication

HID DigitalPersona multi-factor authentication capabilities is very useful especially of effective multiple data protection and facilitation of data transfer across Cloud infrastructure and the manage of various Mobile Application and performance is a great point for the HID DigitalPersona and …
Continue reading

Use Cases

We utilize the cards and 4 digit codes unless we are logging in remotely then we utilize tokens through the app. That has helped immensely compared to having to change users passwords every 60 days and everyone forgetting passwords constantly.
Continue reading

Active Directory Integration

Yes we have it setup through our active directory. As I have said it was a bit confusing and took a long time to implement but I don't know if that was the reseller or the software.
Continue reading

Use Cases

We use HID primarily to enforce MFA for Windows logon. We have had great success with this and received a very positive response from our employees. We use biometrics as a part of the Windows logon process. The password manager has also been very beneficial is the few places we have used it so far.
Continue reading

Active Directory Integration

The AD integration has worked very well for us as everything can be configured and customized through group policy. This integrated well with our current procedures and made the deployment very straightforward.
Continue reading

Use Cases

We have only used Single Sign on and Muti factor authentication for Cloud-based applications using Biometrics (Fingerprints). This has increased the security levels within the org. for Cloud Consoles and lowered the probability of data and privileged user credential loss in case of a breach. I …
Continue reading

Use Cases

We are currently using HID DigitalPersona for multifactor authentication across our entire organization. This solution allows users to access their desktops quickly and without the need for complicated passwords. The IT department doesn't have to reset forgotten passwords every time; which saves …
Continue reading

Use Cases

We were able to use the solution as a Windows authentication method for single sign-on and usage with third-party programs such as thin client (web-based) apps, thick client apps, cloud-based apps, and any other software that is compatible with this solution.
Continue reading

Active Directory Integration

The AD integration has benefited us. The schema's extra extension allows for greater control over unlocking, resetting, and clearing user credentials. It's simple to use and appears on all domain controllers in the environment. It also provides users with a centralized password manager, …
Continue reading

Azure AD Multi-Factor Authentication

AD has enabled us to integrate with the HID DigitalPersona solution over the cloud for all users who require network authentication. The extra schema feature enables cloud administration of credentials and user profiles. It is quite useful and simple to use.
Continue reading

Use Cases

Fails to function without drivers. You won't be able to utilize this unless you have an established system with drivers and paid support. At the client sites, where we have placed a couple of them, each one has worked without a hitch. We've only ever had a hangup when the scanner runs out of …
Continue reading

Use Cases

Enables personnel to sign in fast, allowing them to concentrate more on their task. Staff members are prevented from completing their tasks when they must put down items they are carrying while typing their password when time is of the essence. With HID DigitalPersona, all it takes is a short scan …
Continue reading

Active Directory Integration

Users may register their ID cards with their saved AD login information thanks to HID DigitalPersona's integration with AD. Their logins are now more secure thanks to this. They enter with a fast swipe of their ID card. Faster login times equate to improved patient care, which is advantageous …
Continue reading

Azure AD Multi-Factor Authentication

Because the software is encrypted in our Active Directory, it is straightforward to move a user to a new workstation. We just install the software and re-enter the users' fingerprints. All of their credentials are securely preserved and restored once the person is recognized.
Continue reading

Use Cases

We haven't taken advantage of all HID DigitalPersona has to offer. We are looking forward to exploring other things we can take advantage of.
Continue reading

Active Directory Integration

We use HID DigitalPersona to log into our Active directory accounts and even a shared Kiosk account. Even when logging into the shared account, the credentials of the persona accessing that account are logged. It has very flexible multifactor authentication. It has a very extensive list of …
Continue reading

Applications Protected with HID DigitalPersona

We use HID DigitalPersona password manager to log into our accounting and utility billing software if that is what is being asked. It is just password substitution, though. It just makes access easier, not necessarily more secure. We also use the password manager via biometric login to access our …
Continue reading

Use Cases

We used Windows Logon which made it easy for users to sign in but users have issue when having to change password. Password manager used by users but for both personal and business applications (can deny a user from adding a personal app like Gmail). SSO integration is not as easy as another …
Continue reading

Active Directory Integration

Desktop login for users is good but the high overhead of adding/removing licenses. Requires software installation on domain controllers, which most administrators tend to avoid. Upgrades are recommended to use their professional services.
Continue reading

Use Cases

Allows medical staff to quickly log in, allowing them to focus more on patient care. When time is crucial, and staff has to set down things they are holding to type their password in, it keeps them from getting on with their duties. With HID DigitalPersona, just a quick swipe of their ID card, and …
Continue reading

Active Directory Integration

As HID DigitalPersona integrates with AD, it allows users to register their ID cards with their AD login which is stored in AD. This provides added security to their logins. A quick swipe of their ID card and they are in. Quicker logins mean better patient care and that benefits everyone involved.
Continue reading

Use Cases

Does not work without drivers. Unless you have an established system that has drivers or paid support, you will not be able to use this. We have installed a few of these at customer sites and all of them have performed flawlessly. The only hangup we've experienced is when the scanner is …
Continue reading

Active Directory Integration

Yes, this product provides full Microsoft Active Directory integration! Yes, our organization benefited since Active Directory is the system of records for users, workstations, and security groups.
Continue reading

Use Cases

HID Digital Persona (formerly Crossmatch) supports a breadth of login use cases like Windows login, mobile applications, SSO, etc. However, we do not use much of the breadth of these services, we mainly use HID DigitalPersona for Windows login which makes it more user-friendly and convenient. The …
Continue reading

Active Directory Integration

HID DigitalPersona integration with Active Directory has allowed users to more easily login to their workstations. It also allows for a centralized depository of user credentials allowing use of multiple workstations.
Continue reading

Use Cases

As I mentioned previously, we have drastically reduced call times, calls in general, and the length of time it takes to reset passwords. This has also increased our security posture as it has provided us with an MFA option. This has also been more secure for our user's passwords as they are able …
Continue reading

Active Directory Integration

Yes, we have integrated Microsoft AD with Digital Persona. This has allowed our IT department to streamline some of our processes like templates, password resets, and password management. This has also opened our eyes to this tool and given us more confidence in the software. Digital persona …
Continue reading

Applications Protected with HID DigitalPersona

Currently, we use this application as more of a secure password vault with biometric capabilities. There are several third-party applications that we use this software to protect. We also have built templates that will work with various websites that our organization utilizes. This gives the user …
Continue reading

Use Cases

Before we had the fingerprint readers, we could use SmartCards. Then when we went to fingerprint readers, DP already worked with that. Then when the whole department got cell phones, we went to an authenticator app and again DP already had it so no provider change was necessary. It has grown with …
Continue reading

Active Directory Integration

That was a must-have from the beginning, as our small IT staff did not need another application to separately administrate. As we enable or disable a user in Active Directory, they are immediately set the same way in DigitalPersona. Easy administration equals staff augmentation for our team.
Continue reading

Applications Protected with HID DigitalPersona

All CJIS applications in our Police Department are protected and that helps us with compliance. As the officers would not be able to login to interface with their computers at the Operating System level, all applications on their mobile patrol computers are protected. Some are local web, some are …
Continue reading

Use Cases

Overall, the breadth of Digital Persona has been beneficial to us. We use the Windows logon, single sign-on, biometrics, and templates being deployed for third party applications. This has greatly reduced the number of password reset requests that we get since most of our staff may not even need …
Continue reading

Active Directory Integration

The Active Directory logon is why we have stuck with them for so long. We have a large number of applications that utilize the Active Directory credentials and without this utilization, I believe the application would be severely limited in its use cases in an organizational setting.
Continue reading

Applications Protected with HID DigitalPersona

We are using this with Windows logon, a large number of browser-based applications, Citrix, our COR application, and many more that I am just not able to come up with at this time. This has always worked great in IE and Edge, but the reliability suffers with the Chrome Extension.
Continue reading

Use Cases

We mainly utilize the biometric logon solution. This has worked wonders for our users. We are able to have them set strong Windows passwords that they no longer have to remember, as they simply utilize the biometric logon solution instead.
Continue reading

Use Cases

Maybe my organization needs a technical follow up with Crossmatch. Our primary use is as a biometric reader for two-factor authentication. We would love to have a discussion around the other areas of use.
Continue reading

Use Cases

We have the DigitalPersona software running on two virtual servers and it is mainly used for Windows authentication. I have it tied to AD and it has worked very well in our environment. I have also created some log-ons for other applications that are most used by users. This helps the users log on …
Continue reading

Active Directory Integration

We have DigitalPersona fully integrated into Active Directory. Doing this allows the users to move to any part of the bank and log onto any machine securely at any branch of the bank. All of the passwords and credentials are stored in a central location. All security and authentication are managed …
Continue reading

Applications Protected with HID DigitalPersona

We are mainly utilizing the DigitalPersona software on all workstations at every branch of the bank. It is used mainly for Windows log-ons but is also utilized for several financial applications. Protection of financial records is extremely important at the bank. Users can also create logons …
Continue reading

Azure AD Multi-Factor Authentication

We utilized HID and it greatly helped with credentials and authentication in AD. Having HID work with Azure HD greatly streamlined the password process. On top of that all users once indoctrinated to the world of HID, really relied on the biometric system. They relied so much that they always …

Continue reading

Use Cases

We haven't tested or used the features for VPN or cloud. We have found that the ease of use for Windows logon is a benefit for some of our less technical users. Facial recognition has been a blessing for those users that do not have fingerprints or a mobile device to use OTP.
Continue reading

Active Directory Integration

We have greatly benefited from this feature, as we are a MS AD environment. Being able to successfully authenticate users using not only secure but different features depending on the work zone has helped a lot. Being able to provide two factor or even three factor in some instances to protect the …
Continue reading

Applications Protected with HID DigitalPersona

All our platforms are pretty much Windows 7 desktops, in-house applications, and some proprietary applications specific to a department. We also utilize the kiosk setup for public users for public information lookup. This allows the department users to log in with their credentials (fingerprints) …
Continue reading

Use Cases

We have taken advantage of the multiple use case support in DigitalPersona to allow users not just biometric authentication for PC logon, but to quickly logon to business critical applications and for various websites. We have several shared work spaces and allowing staff a quick and reliable …
Continue reading

Active Directory Integration

Yes, we have benefited from the Microsoft Active Director integration. We simply assign users to our AD groups or GPO and they are asked to register their finger prints by the client. It is easy to manage and delete or reset finger prints from within Active Directory, so users never have to worry …
Continue reading

Azure AD Multi-Factor Authentication

We are not currently taking advantage of the multi-factor authentication with Azure AD. However it is a feature that we are glad is available if future projects expand our use of Azure or an Azure hybrid environment. Having an option that is already included with a product we own is always …
Continue reading

Use Cases

We typically just use the Windows login, but we also implemented multi-factor authentication with Digital Persona. This actually saved us money by discontinuing our other two-factor authentication solution. We integrated DigitalPersona with our MFA applications which added a lot of benefit, …
Continue reading

Active Directory Integration

Active Directory Integration is a key component of DigitalPersona. Once integrated all Active Directory user processes, like password changes, are transparent in DigitalPersona.

When an application uses active directory credentials for the application, you are initially prompted for how you want …
Continue reading

Applications Protected with HID DigitalPersona

Windows AD, internal applications, web pages, MFA for administrator accounts, and digital personal is acting as our Password Manager solution. We are now using DigitalPersona as the MFA token for multiple applications; VPN remote access, network access, elevated access on servers, etc. …
Continue reading

Azure AD Multi-Factor Authentication

We currently are not using DigitalPersona for Azure AD, but we are planning to use them for Federated services soon. We are in the middle of an Office 365 project and have plans to use DigitalPersona for that application as well. We have seen the demo on it and we think it should give us …
Continue reading

Awards

Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards

Reviewer Pros & Cons

View all pros & cons

Video Reviews

Leaving a video review helps other professionals like you evaluate products. Be the first one in your network to record a review of HID DigitalPersona, and make your voice heard!

Return to navigation

Pricing

View all pricing

HID DigitalPersona

$3.75

On Premise
per user per month

Entry-level set up fee?

  • Setup fee required

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting / Integration Services
Return to navigation

Product Details

What is HID DigitalPersona?

The HID DigitalPersona multi-factor authentication software offers a new way to provide authentication services to users. Whereas traditional 2FA/MFA solutions are stuck on “what you have/what you know”, DigitalPersona leverages an array of authentication methods to access public and corporate network resources. Enterprise users can gain access to their cloud applications, such as Microsoft 365, VPNs, corporate networks, Windows desktops, and Citrix applications . Consumers can confirm their identity and authenticate transactions.

Balancing security and usability, HID DigitalPersona boasts one of the widest arrays of authentication factors in the industry. This includes one-time passwords, mobile-based push, smartcards, security keys, risk- and context-based methods, and biometrics, such as fingerprint, face, and behavioral keystroke.

HID DigitalPersona Competitors

HID DigitalPersona Technical Details

Deployment TypesOn-premise
Operating SystemsWindows
Mobile ApplicationApple iOS, Android, Windows Phone
Supported CountriesMost Countries except companies included in US Embargo

Frequently Asked Questions

HID DigitalPersona (formerly Crossmatch) provides a comprehensive multi-factor authentication solution. The vendor’s value proposition is that their solution frees users from cumbersome login activities while making it easy for an IT Team to secure access to their networks, data and applications.

The Okta Identity Cloud and Imprivata OneSign are common alternatives for HID DigitalPersona.

Reviewers rate Usability and Support Rating and Implementation Rating highest, with a score of 9.

The most common users of HID DigitalPersona are from Mid-sized Companies (51-1,000 employees).
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews

(1-4 of 4)
Companies can't remove reviews or game the system. Here's why
Score 2 out of 10
Vetted Review
Verified User
We use it across the whole organization. The idea was to use biometric ID rather than memorize and enter passwords in the many applications we use on a daily basis.
  • The concept is great. A password vault that is managed using biometric identification. Users forget/lose passwords but not their fingers.
  • The fingerprint reader is pretty accurate.
  • They could definitely improve on how the software reads/detects log on screens. Some applications, legacy and web based, are difficult for DigitalPersona to pickup on.
  • There could be improvements to the user interface. The new Altus interface is actually worse in many ways than the older DigitalPersona interface. For example the way the logons are listed in the program is very convoluted especially if you have multiple logons to the same application.
  • They could better test software before releasing it. Our upgrade to Altus from DigitalPersona was terrible. The version we installed had so many flaws that I felt it should not have left beta testing. It broke a lot of the logon templates, some of the password change screens stopped working, some users lost logon data, etc. We are still dealing with the fallout from it. Possibly the worst upgrade I have been involved with in my 18 years of IT experience.
The concept of DigitalPersona is so awesome but the execution is just not there. The software is so fickle as to when it wants to work that it is frustrating. I hope that they take take some feedback from the users and make some improvements to the functionality and UI. I really question some of the changes they made in the new Altus.
I would say estimate that it works well with about 70% of the applications we use. The 30% either does not work or works partially - the password change template may not work or it will fill in the data but user has to click submit, etc. We have not been successful in using it over VPN using fingerprints. You can use over VPN by typing in the master password as a workaround. It just seems like our most commonly used applications are the ones DigitalPersona has problems with, thanks Murphy.
  • When we first got DigitalPersona 7(?) years ago, it was great. It wasn't perfect but it was better than anything else we had seen at the time. However the software just seemed to languish and not improve with time. In fact it got worse with Altus.
  • Most of the users seem to like it... when it works. When a password change screen does not work correctly, it is time consuming to fix.
  • If the user base is very tech savvy, you will get a slightly better ROI. When the average user flubs up a password change or gets a password reset, it requires some technical help to fix and thus time consuming at times. Some tech-challenged users have a hard time really understanding how DigitalPersona works and those users sap up a lot of resources.
We have not looked at anything else since we have been on DigitalPersona Altus. However with the recent troubles with Altus, I have started to look around.
Yes, AD integration is good and works mostly well. However we have 1-2% of users whose DP/AD is so corrupted that the only fix would be to delete their AD account and start from scratch. This was the last fix suggested by DP support after we tried every other fix they could think of. We have yet to do this fix so those users are not using DP at the moment.
Without getting too specific, we use this for about 30 applications. It works well on about half, and to VARYING degrees with the other half. It's a mix of local/server applications and web applications. When it works, it's a beauty.
  • My experience is that most web based applications are the easier ones for DP.
  • The admin console to program the signon templates is fairly easy to use.
I have not heard of any vendors directly supporting DP. But I'm not sure that this is a justified question as it is the duty of DP to be able to screen scrape this information and make it usable for us.
It really is farily easy to integrate into an AD environment.
Due to their poor execution with new releases and just poor overall software management, I would recommend against implementing as a new install. For example, one of the nice things about their password change screens was that you would summarize the application password requirements and display it for the users. However in one of the releases last year, they stopped displaying that requirements field and replaced it with a generic secure password guideline checklist. So our users would follow that guideline, because of the way we had trained them over the years to follow the password rules that would display, and they would promptly get locked out the application. We have a legacy application which requires a 6 character password and that was promptly displayed until this "upgrade" came along and ruined it all.
300
Every department/role in our company.
4
IT staff
  • It integrates with AD so people do not have to remember logon info nor type them in every time.
  • It functions as a password vault and thus helpful with the many application logons that our employees use.
  • It's great that it supports multiple logons for the same applications. We have employees that have different roles within the same application and thus they have different credentials.
Two things.
1- because of the hardware investment we already made in all the fingerprint readers.
2 - I have yet to see a competitor with a similar concept.
No
  • Price
  • Product Features
  • Product Usability
The concept of the password vault for "all" applications tied to a biometric reader was the ideal solution we were searching for.
I'm not sure we would have selected it any differently. DP had a great concept and a decent product at the time. I just didn't expect them to get worse over time.
  • When the templates work and the password change hints were working, password changes were simple.
  • It is difficult for some users to grasp the concept of how to use this application after a temporary password is assigned to them and the password screen is "locked".
They could tweak it to better recognize login and password change screens. Also UI could be much improved.
June 06, 2018

Review

Score 5 out of 10
Vetted Review
Verified User
We have benefited from this integration by helping users login to their domain workstations using their fingerprints and one less password to remember.
Active Directory
  • RemoteApp applications
Users use Digital Persona to login to the published RemoteApps. It was fairly straight forward to achieve but does run into hiccups sometimes.
  • Remote users on their non-domain workstations connecting to their domain workstations.
No.
  • Single Signon
Get the latest version of the software, Altus. This is what they are called after the company was bought out and supports Windows 10 properly.
It is used by the whole organization. It takes the pain away from typing in your passwords every day for different websites and applications.
  • Login speed
  • Secure
  • Sometimes it does not register fingerprints
  • Templates get corrupt occasionally
It is well suited when logging on to workstations that are automatically locked after some inactivity. It takes the pain away from retyping your passwords at every instance.

It is also safer than writing down your password somewhere which might be a security risk.

In today's world of so many passwords to remember, logging in with your fingerprints comes handy.
We use DP for multiple logins including Windows, different websites, and other third-party applications.
  • Makes the environment safer when users do not need to know their passwords so they cannot share it either by mistake or voluntarily.
No
  • Price
  • Product Features
  • Product Usability
Get the latest version of the software and streamline the update.
June 05, 2018

Good Smart Finger

Score 10 out of 10
Vetted Review
Verified User
This has definitely been and Huge help for us. Less people forget passwords which stops our IT department from doing other projects. It is also very helpful being a secondary authentication for more secure websites. With it being very easy to use, any employee can just jump right in and start using it without any issues.
Our Core system and all of our Finance programs. We are now using DP with more cloud based programs and Anti-Virus. Mostly using it for Windows systems and websites. With more things going to sso we are finding new ways to use Digital Persona Altus so far everything is working.
  • Xp2
Very easy to achieve. It only needs passwords.
  • Single Signon
  • AppExchange or similar marketplace
None that I can think of.
It is very simple and easy. The policies are nice.
Take your time and don't over think it. It is very easy to use and is not the complicated.
DigitalPersona is being used by our entire organization. It really helps with our virtual system and when people have to change locations to help out they have all their passwords saved and easy access. This saves time and less calls to IT for forgotten passwords/resets. The program is very intuitive and once the templates are set up it is very user friendly.
  • Very intuitive.
  • Easy to get up and running.
  • Great customer support with getting things moving smoothly.
  • Overall good, none come to mind.
[DigitalPersona is well suited to] Virtual Desktops where people move around a lot. [It's less appropriate] For one person to use that only has 1 password.
  • Less password resets.
  • Less forgotten passwords.
  • Easy to change locations.
Cory McCarty | TrustRadius Reviewer
Score 6 out of 10
Vetted Review
Verified User
We have been able to randomize most of our users' AD passwords so that they are more secure. Most users now authenticate using only their fingerprint.
Right now, only Windows authentication and 3rd party website logins.
  • We have not done any integrations. We only use DP to authenticate to 3rd party websites.
  • We have done as much integration as we plan on doing for right now.
None of the above
None, we do not have any integrations.
All users authenticate to Windows using biometric fingerprint readers. We also use password manager through the Altus console to authenticate to 3rd party websites. We have over 120 3rd party logins that we manage, so this solution saves us time logging in to 3rd party websites and applications, and also gives us a secure way to store passwords.
  • Windows authentication
  • Password management
  • multifactor authentication
  • We have issues with fingerprint misreads with our users who do not have as defined of a fingerprint
  • We also have issues with the Agent not loading in Internet Explorer consistently on some workstations.
When it works properly, I would recommend to anyone. The reason I'm rating a 6 is we have some users who don't like the solution at all because of the issues I described previously.
We have struggled to get it working with VPN due to the fact that VPN is mostly used on laptops. Getting the built in fingerprint reader on laptops to work with DP is shaky at best.
  • Positive impact is for the users for which the solution works they love it and it saves them time.
  • We don't have any benchmarks, but, anecdotally, users report that the solution saves them time logging into websites and frustration with managing passwords.
DigitaPersona, as a password manager, is a more robust and stable tool than Dashlane.
75
AD authentication, storing passwords and authenticating to 3rd party websites using fingerprint
1
Understanding of password management and SSO authentication, AD
  • AD authentication
  • Password management
  • Authentication to 3rd party websites using fingerprint
  • We use the standard functionality
  • We don't have plans to expand the functionality in any way
The product has worked almost exactly as advertised.
Return to navigation