- It is very intuitive and simple to use.
- User can use a Hard Token or Soft Token ( most favorable) to generate the authentication code on real-time
- Combination of PWD & real-time OneSign code makes company data safe and secure.
- OneSign Admin Console very easy to use & User addition/removal is very easy to carry out
- Customization of Imprivata OneSign is a problem as they prefer to provide out of the box functionality only
- Reporting functionality in Admin Console is limited
- Should built industry specific solution to get better penetration
1. Quick access to virtual desktops with Citrix, VMware Horizon, or Microsoft RDS using just their proximity enabled name badge.
2. Provide Single Sign-On to applications. Enter a password once, and Imprivata will input it on subsequent application launches.
- Allows admins to enable single sign-on to additional applications without Imprivata services. After a quick training session with Imprivata, most admins are easily able to enable additional apps.
- Works well with many device types including Windows, IGEL, Teradici and many Linux based thin clients.
- High availability and failover. Imprivata's implementation of this was one of the most well thought out and easy to implement of any solutions in our stack. It works very similar to Active Directory, but requires no real config or settings to make it happen. Add an additional appliance and the enterprise is automatically synchronized. If an appliance goes down, client software is aware and automatically switched to another appliance.
- Licensing is per named user. This is off putting for many VDI customers who are accustomed to concurrent licensing models. They have a valid reason behind it, that each user that uses the system has a record with stored credentials and thus consumes a license, but still a different model than other VDI solutions.
- Finding detailed information on configuration and support is more difficult than many other vendors they integrate with. Everything is behind a support wall vs VMware or Citrix who's solutions can be easily googled.
- They've primarily branded as a healthcare solution, but their tools and software work well for non healthcare / commercial organizations.
- The ability to allow users to easily sign in one time to the network, and then allow users to open additional programs without typing in their credentials again.
- Profile management for the user is also easy and they can change their passwords if needed.
- The two factor authentication is simple and allows the PD to use a token to unlock their computer with a quick touch as opposed to logging back in each time the laptop locks the machine.
- Building the application profiles is not always simple.
- Better application integration with Java would be beneficial.
- Password management
- Quick access while moving from workstation to workstation
- Auto-login to applications and websites
- Capturing screens while creating profiles could be a little more complete, especially when dealing with websites or apps running flash or Java.
The time saving and ease of access to managed systems and even unmanaged systems helped lower help desk calls and support issues. Integration with a core identity system makes the implementation easier for the user community. We were able to introduce HID and fingerprint readers into critical areas to help speed up access to 90% of the core medical systems. I was not there to finish the last 10%.
- Application learning toolset was the easiest of all the tools I reviewed for this project. It was able to pull unique data from the GUI to help facilitate login/logout processes.
- Ease of registration. The end users were able to access the systems with either UID/password, badge or finger. The wizards were able to detect card replacement with ease.
- Epic - The toughest application to profile, they introduced a connector that they wrote with Epic's developers to help this API based login process. This was critical for the longevity of this project. It took several iterations but the final product that was released while I worked on it was very solid.
- The agent process was sometime slow.
- System health was an issue and the tool really needs a maintenance process to allow for a system restart when not in use, we accomplished it with secondary scripts.
- Disconnect with Citrix was sometimes an issue but we were running an older version of the application server. The logging and troubleshooting was cumbersome to comb through.
Imprivata OneSign Scorecard Summary
About Imprivata OneSign
OneSign from Imprivata, the global healthcare-oriented IT security company, is a single sign-on (SSO) and authentication management, dedicated to fast but secure audit-proof clinical data access.
While generally a healthcare vertical specialist, Imprivata's offers OneSign as an access management solution for banks, energy companies, and governments as well.
Imprivata OneSign Technical Details