DigitalPersonal, a lot more than just a Fingerprint Reader
Updated April 24, 2020

DigitalPersonal, a lot more than just a Fingerprint Reader

Tres Coker | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User

Overall Satisfaction with HID DigitalPersona (formerly Crossmatch)

We currently use DigitalPersona for biometrics, single sign-on, Multi-Factor Authentication, and password management. Their product allows our users to sign on to their computer and applications using their fingerprint. Their product allowed us as an information technology [company] to force our users to use stronger passwords (fourteen character passwords) and allowed us to use a centralized password management application. With DigitalPersona our organization now has more secure passwords, easier access to applications, and a password management solution.
  • Application / AD Integration
  • Simplicity of application
  • Their solution solves multiple problems
  • Easy Upgrades
  • Implementation is difficult, this is more to due to the applications than DigitalPersona. (all applications are not created equal)
  • Native Two-Factor support (client less two factor support)
  • Laptop biometrics support
We typically just use the Windows login, but we also implemented multi-factor authentication with Digital Persona. This actually saved us money by discontinuing our other two-factor authentication solution. We integrated DigitalPersona with our MFA applications which added a lot of benefit, instead of going to multiple applications for authentication we now have just one.
Active Directory Integration is a key component of DigitalPersona. Once integrated all Active Directory user processes, like password changes, are transparent in DigitalPersona.

When an application uses active directory credentials for the application, you are initially prompted for how you want to sign into that application, like domain\username or username@domainname.com. DigitalPersona knows your AD password and it automatically logs you into that application.
Windows AD, internal applications, web pages, MFA for administrator accounts, and digital personal is acting as our Password Manager solution. We are now using DigitalPersona as the MFA token for multiple applications; VPN remote access, network access, elevated access on servers, etc. DigitalPersona supports multiple MFA methods from physical keyfobs, Fido key, but we primarily just use the DigitalPersona app.
We currently are not using DigitalPersona for Azure AD, but we are planning to use them for Federated services soon. We are in the middle of an Office 365 project and have plans to use DigitalPersona for that application as well. We have seen the demo on it and we think it should give us everything we need except conditional access rules.
  • Users love it
  • Users are more productive
  • Our organization is more secure
We really didn't examine other products because we couldn't find anything that did everything DigitalPersona did.
It is probably more appropriate for departments that have multiple applications and where productivity is essential (a call center for example). However, every employee would benefit from this, just some groups might benefit more. If a user goes between 5 workstations or applications every day then saving that user the 15-30 seconds it takes to log in will benefit that individual more than a user that only logs into one computer once a day.

Enrollment is easy and IT departments benefit greatly because passwords are not a lot easier to manage.