お問い合わせ

Microsoft with SafeNet Data Security

About Microsoft

Gemalto and Microsoft work closely to enhance the security of Microsoft solutions. Designed to meet the performance and assurance needs of the most demanding applications, Gemalto offers a full spectrum of encryption technologies for Microsoft applications to secure digital identities, data, communications, and transactions. Microsoft offers several applications that integrate with Gemalto's SafeNet portfolio of crypto management, encryption, and authentication solutions to provide users with powerful data protection solutions.

Overview

Microsoft offers several applications that integrate with the SafeNet portfolio of crypto management, encryption, and authentication solutions to provide users with powerful data protection solutions.

For an overview of Gemalto's integrations with Microsoft download the Security Solutions for Microsoft Applications eBook.

Microsoft with SafeNet Data Security

One Microsoft Way
Redmond, Washington 98052-7329
United States
North America

Integrated Application(s):

    Application Request Routing (ARR): Authentication with SafeNet Authentication Service

    Application Request Routing (ARR) is an extension to Internet Information Server (IIS), which enables an IIS server to function as a load balancer.

    SafeNet Authentication Service (SAS) offers fully automated authentication delivered from the cloud to raise the assurance level that a user is who they claim to be, ensuring secure access to critical applications and data, with OTP-based strong authentication, whether using a hardware key fob, mobile device, or grid-based authenticator.

    Resource and Additional Information

    SAS Using RADIUS for ARR

    Authenticode: Code Signing and SafeNet Enterprise and SafeNet PCI-E HSMs

    Microsoft Authenticode permits end users to verify the authenticity of software code before downloading it from the Internet. Authenticode relies on the use of private keys to sign and time-stamp software during publication.

    SafeNet Enterprise/SafeNet PCI-E (formerly Luna SA and Luna PCI) HSMs integrate with Authenticode to secure the cryptographic materials that sign code and prove authenticity of authorship. SafeNet Enterprise HSM’s FIPS 140-2 Level 3 tamperproof appliance preserves the integrity of code-signing operations by ensuring that the cryptographic materials used in the signing process remain secure.

    Resources and Additional Information:

    Azure: Host Guardian Service

    Host Guardian Service key storage: For the strongest possible security, we recommend that HGS keys are created and stored exclusively in a Hardware Security Module (HSM). If you are not using HSMs, applying BitLocker on the HGS servers is strongly recommended.

    Resources and Additional Information

    Learn more about SafeNet Luna HSMs

    Guarded Fabric and Shielded VM Planning Guide for Hosters

     

    Azure: Database Encryption with SafeNet ProtectDB

    SafeNet ProtectDB encrypts sensitive data such as credit card numbers, social security numbers, and passwords at the column-level in databases running on Microsoft Azure – all without changing the database’s architecture.

    With SafeNet ProtectDB database encryption, organizations can define access to sensitive encrypted data according to role, user, time of day, or other variables. Granular access controls limit data access according to job responsibilities and prevent database administrators (DBAs) from impersonating other users with the appropriate access privileges to sensitive data. In addition, SafeNet ProtectDB provides built-in and automated key rotation and data re-keying, and comprehensive logging and auditing.

    Backed by SafeNet KeySecure for key and policy management, SafeNet ProtectDB users can produce all of the audit trails, logs and reports they need to demonstrate their regulatory compliance as they benefit from using Microsoft Azure. 

    Resources and Additional Information

    SafeNet KeySecure page

    SafeNet ProtectDB page

    Enabling Compliance on Microsoft Azure Solution Brief

    Security Solutions for Microsoft eBook

     

    Azure: Application Tokenization with SafeNet Tokenization

    SafeNet Tokenization protects sensitive information in applications running in Azure by replacing it with a surrogate value that preserves the length and format of the data. SafeNet Tokenization can be used to protect primary account numbers (PAN), as well as other sensitive data such as personal identifiable information (PII) and protected health information (PHI) residing in databases on Microsoft Azure. Straightforward to integrate, SafeNet Tokenization does not require any changes to applications or databases running in the cloud in order to secure data. And, Granular access controls give organizations the ability to tailor access to sensitive data and tokens to ensure only that authorized users or applications can view the data in cleartext.

    Backed by SafeNet KeySecure for key and policy management, SafeNet Tokenization users can produce all of the audit trails, logs and reports they need to demonstrate their regulatory compliance as they benefit from using Microsoft Azure.

    Resources and Additional Information

    SafeNet KeySecure page

    SafeNet Tokenization page

    Enabling Compliance on Microsoft Azure Solution Brief

    Security Solutions for Microsoft eBook

     

    Azure: Application Encryption with SafeNet ProtectApp

    SafeNet ProtectApp integrates via API with applications running in the Azure cloud to secure data as it is created. Once encrypted by SafeNet ProtectApp, application data is kept safe across its entire lifecycle, no matter where it is transferred, backed up, or copied to or within Microsoft Azure.

    Using ProtectApp application encryption, organizations can secure both structured and unstructured data residing on-premises or in the Azure cloud. Additional granular access controls ensure that only authorized users or applications can view secured data wherever it is backed up, transferred or archived. The combination of application encryption and policy-based access controls isolates sensitive data in multi-tenant cloud environments, and mitigates privileged insider risks posed by any Azure administrator.

    Backed by SafeNet KeySecure for key and policy management, SafeNet ProtectApp users can produce all of the audit trails, logs and reports they need to demonstrate their regulatory compliance as they benefit from using Microsoft Azure.

    Resources and Additional Information

    SafeNet KeySecure page

    SafeNet ProtectApp page

    Enabling Compliance on Microsoft Azure Solution Brief

    Security Solutions for Microsoft eBook

     

    Azure: File and Disk Encryption with SafeNet ProtectFile

    SafeNet ProtectFile provides transparent and automated file level encryption to secure sensitive and highly-regulated data on virtual machine instances running in the Azure cloud. With SafeNet ProtectFile, organizations can securely use the cloud to store such unstructured data as credit card numbers, personal information, logs, passwords, configurations, and more in a broad range of files, including word processing documents, spreadsheets, images, database files, exports, archives, and backups, and big data implementations.

    File encryption separates administrative duties to ensure that data is isolated from Microsoft Azure administrators, other tenants, and any unauthorized parties. Granular access controls ensure that only authorized users or processes can view encrypted data wherever it resides – in backup, archive or even in a third-party cloud.

    Resources and Additional Information

    SafeNet KeySecure page

    SafeNet ProtectFile page

    Enabling Compliance on Microsoft Azure Solution Brief

    Security Solutions for Microsoft eBook

     

    Azure: Bring Your Own Key (BYOK)

    Bring Your Own Key (BYOK) is a Microsoft Azure feature designed to support organizations that need greater control over their tenant keys and sensitive data in the Azure Cloud. Azure BYOK enables tenant keys to be generated in on-premises HSMs and then be imported into the Azure Key Vault

    SafeNet Luna Hardware Security Module (HSMs) can be used to generate tenant keys on-premises and imported into Microsoft Azure Key Vault. These imported tenant keys can then be used like any other Azure Key Vault key, making the use of BYOK transparent to Azure services such as Azure RMS, Azure SQL, and other applications that support Azure Key Vault.

    For more information please contact your Gemalto sales representative, or visit safenet.gemalto.com/contact-us

     

    Azure: Access Control Service: Saas with SafeNet Authentication Service

    Access Control Service or Windows Azure Access Control Service is a Microsoft-owned cloud-based service that provides an easy way of authenticating and authorizing users to gain access to web applications and services, while allowing the features of authentication and authorization to be factored out of the application code.

    SafeNet Authentication Service (SAS) delivers a fully automated, versatile, and strong authentication-as-a-service solution. With no infrastructure required, SafeNet Authentication Service provides smooth management processes and highly flexible security policies, token choice, and integration APIs.

    Resources and Additional Information

    SAS Using SAML as an Identity Provider for Microsoft Azure Access Control Service

     

    Azure: RemoteApp VDI with SafeNet Authentication Service

    Microsoft Azure RemoteApp helps employees stay productive anywhere, and on a variety of devices—Windows, Mac OS X, iOS, or Android. Your company’s applications run on Windows Server in the Azure cloud, where they’re easier to scale and update. Employees install Microsoft Remote Desktop clients on their Internet-connected laptop, tablet, or phone and then can access applications as if they are running locally.

    SafeNet Authentication Service (SAS) delivers a fully automated, versatile, and strong authentication-as-a-service solution. With no infrastructure required, SafeNet Authentication Service provides smooth management processes and highly flexible security policies, token choice, and integration APIs.

    Resources and Additional Information

    SAS Using SAML as an Identity Provider for Microsoft Azure RemoteApp

     

    Azure: Virtual Desktop Infrastructure with SafeNet Authentication Manager

    SafeNet Authentication Solutions integrates with Microsoft Azure to provide users with a virtual desktop infrastructure solution.

    Resources and Additional Information

    SafeNet Authentication Manager and Windows Azure Integration Guide

    SAC using  CBA for MS Azure AD

    SAS using SAML as an Identity Provider for MS Azure AD

     

    Microsoft BitLocker: File and Disk Encryption with SafeNet Authentication Client

    SafeNet Authentication Client integrates with Microsoft BitLocker to provide users with a file and disk encryption solution.

    Resources and Additional Information

    Using SafeNet Authentication Client CBA for BitLocker

     

    Microsoft Certificate Enrollment: Certificate Services with SafeNet Hardware Security Modules
    SafeNet PCI-E and SafeNet Enterprise (formerly Luna PCI and Luna SA) HSMs both integrate with Microsoft Certificate Enrollment to provide users with certificate services solutions.

    Credential Guard and Gemalto’s SafeNet Authentication Client

    Resource and Additional Information

    Windows Defender Credential Guard uses virtualization-based security to isolate and protect secrets (e.g., NTLM password hashes and Kerberos ticket-granting tickets) to block pass-the-hash or pass-the-ticket (PtH) attacks. 

    SafeNet Authentication Client (SAC) is a public key infrastructure (PKI) middleware that provides a secure method for exchanging information based on public key cryptography, enabling trusted third-party verification of user identities. 

    Using SafeNet Authentication Client with Windows Defender Credential Guard

     

    Microsoft DirectAccess: Network Access with SafeNet Authentication Solutions

    DirectAccess is a VPN-like technology that provides intranet connectivity to client computers when they are connected to the Internet. 

    SafeNet Authentication Service (SAS) delivers a fully automated, versatile, and strong authentication-as-a-service solution. With no infrastructure required, SafeNet Authentication Service provides smooth management processes and highly flexible security policies, token choice, and integration APIs.

    SafeNet Authentication Client (SAC) is a PKI middleware application that provides a secure method for exchanging information based on public-key cryptography, enabling trusted third-party verification of user identities.  

    SafeNet Authentication Manager (SAM) is a comprehensive token management system. It is an out-of-the-box solution for Public Certificate Authorities (CA) and enterprises to ease the administration of SafeNet’s hardware or software tokens devices. 

    Resources and Additional Information

    SAS Using RADIUS Protocol with Microsoft DirectAccess
    SAC Using CBA for Microsoft DirectAccess
    SAM using RADIUS Protocol with Microsoft DirectAccess

    Dynamics CRM: SaaS with SafeNet Authentication Service

    Dynamics CRM is the customer relationship management software developed by Microsoft. Out of the box, the product focuses mainly on sales, marketing, and service (helpdesk) sectors.

    SafeNet Authentication Service (SAS) delivers a fully automated, versatile, and strong authentication-as-a-service solution. With no infrastructure required, SafeNet Authentication Service provides smooth management processes and highly flexible security policies, token choice, and integration APIs.

    Resources and Additional Information

    SAS Using Push OTP as an Identity Provider for Microsoft Dynamics CRM
    SAS Using SAML as an Identity Provider for Microsoft Dynamics CRM 

     

    Microsoft Exchange 2016: Web Server with SafeNet Authentication Client

    Exchange 2016 with ADFS can be configured to support multi-factor authentication in several modes.

    SafeNet Authentication Client (SAC) is a PKI middleware application that provides a secure method for exchanging information based on public-key cryptography, enabling trusted third-party verification of user identities.  

    Resources and Additional Information

    SAC Using CBA for Exchange 2016 with ADFS

    Microsoft File Servers: Storage and Archive with SafeNet StorageSecure
    SafeNet StorageSecure integrates with Microsoft File Servers to provide users with a storage and archive solution.

    Forefront Unified Access Gateway: Remote Access and SafeNet Authentication Solutions

    Microsoft Forefront Unified Access Gateway (UAG) provides secure remote access to corporate networks for employees, partners, and customers. UAG uses Secure Socket Layer (SSL), Virtual Private Network (VPN), Web application firewalls, and secure endpoint management to securely deliver web-based enterprise applications. Using UAG, enterprise applications are securely available to authorized users from anywhere.    

    SafeNet authentication solutions integrate to verify user identities as they log on to enterprise networks via UAG. By adding SafeNet’s multifactor authentication, enterprises strengthen VPN security ensuring that only authorized users gain access to private networks. Additionally, SafeNet Authentication Service and SafeNet Authentication Manager’s back-end management tools simplify ongoing administration of the authentication infrastructure for improved efficiency.

     

    Forefront Unified Access Gateway: SSL Key Storage and SafeNet Enterprise HSM

    Microsoft Forefront Unified Access Gateway (UAG) provides secure remote access to corporate networks for employees, partners, and customers. UAG uses Secure Socket Layer (SSL), Virtual Private Network (VPN), Web application firewalls, and secure endpoint management to securely deliver web-based enterprise applications. Using UAG, enterprise applications are securely available to authorized users from anywhere.

    Gemalto's SafeNet Enterprise (formerly Luna SA) HSM integrates to store the certificates and encryption keys at the heart of UAG’s SSL transactions. With SafeNet Enterprise HSM as the root of trust, organizations can securely send data and deliver applications through protected SSL tunnels. Data is encrypted before it travels and the keys necessary to decrypt it never leave the hardware appliance thus eliminating the possibility that data will be intercepted while in cleartext.

    Resources and Additional Information:

    Microsoft Forefront Unified Access Gateway 2010 with SafeNet HSMs

     

    Forefront Threat Management Gateway: SSL Key Storage and SafeNet PCI-E HSM

    Microsoft Forefront Threat Management Gateway (TMG) is a secure web gateway that unifies multiple layers of security into an easy-to-use solution that protects against advanced web-based threats. Forefront TMG inspects web traffic at the network, application, and content layers so users can safely and productively use network resources without worrying about persistent threats.

    Beyond its ability to monitor web traffic for viruses and malware, it can serve as a firewall and VPN to secure access to internal resources. An SSL feature set secures internal communications through encryption so sensitive enterprise resources remain visible only to authorized users. TMG can be deployed either as a stand-alone server to deliver maximum performance, or as a virtualized machine combined with other applications to reduce capital investments.

    SafeNet PCI-E HSMs by Gemalto integrate with Forefront TMG to secure SSL transactions by storing master SSL private key in a FIPS 140-2 Level 3 tamper-proof hardware appliance. The SafeNet PCI-E HSM integration also significantly improves server performance by offloading resource intensive cryptographic operations to the purpose-built encryption appliance.

     

    Microsoft Forefront Identity Manager: Identity and Access Management and SafeNet Authenticators

    Microsoft® Forefront Identity Manager (FIM) is an identity management system that allows administrators to centrally manage identities and credentials across an enterprise in order to streamline administration and facilitate the enforcement of corporate policies. Close integration with Microsoft Active Directory and Exchange Server means administrators can effectively manage credentials from a central point so that it is easier to ensure that only appropriate users have access to sensitive materials. 

    Additionally, detailed auditing capabilities, automated full lifecycle identity administration and self-service features combine to reduce the amount of time spent on help desk calls and audit reporting. Gemalto's SafeNet HSMs and authentication solutions integrate with FIM to enhance the security operations involved in verifying and managing enterprise identities.

    Gemalto's SafeNet authenticators enable FIM users to store or create private digital credentials inside a number of form factors ranging from tokens to smartcards for easy, secure and portable authentication. 

    From the central FIM console, administrators can provision, update and de-provision the authenticators used in their enterprise. Gemalto's wide range of form factor support (including authenticators from third parties), coupled with FIM’s centralized identity management tools significantly reduces the complexity and expense of implementing and managing multi-factor authentication. Gemalto's integration strengthens an enterprise's identity verification processes to ensure that only authorized users have access to sensitive enterprise materials.

    Additional Resources

    Microsoft Forefront Identity Manager 2010 and SafeNet Enterpise HSM Integration Guide

    SAC Certificate-based Authentication on Microsoft FIM CM 2010 R2

     

    Microsoft Forefront Identity Manager: Identity Management and SafeNet Enterprise and SafeNet PCI-E HSMs

    Microsoft® Forefront Identity Manager (FIM) is an identity management system that allows administrators to centrally manage identities and credentials across an enterprise in order to streamline administration and facilitate the enforcement of corporate policies.

    Close integration with Microsoft Active Directory and Exchange Server means administrators can effectively manage credentials from a central point so that it is easier to ensure that only appropriate users have access to sensitive materials. Additionally, detailed auditing capabilities, automated full lifecycle identity administration and self-service features combine to reduce the amount of time spent on help desk calls and audit reporting. Gemalto's SafeNet HSM and authentication solutions integrate with FIM to enhance the security operations involved in verifying and managing enterprise identities.

    Gemalto's SafeNet Enterprise and SafeNet PCI-E (formerly Luna SA and Luna PCI) HSMs integrate to protect the private keys and certificates that are assigned to users to verify their identities. When administrators store these materials in a SafeNet Enterprise FIPS 140-2 Level 3-validated tamper-proof hardware appliance, they ensure that the materials are never exposed outside of the HSM and are always protected from unauthorized users.

    By building the FIM certificate management infrastructure with the SafeNet Enterprise HSM as the secured root, administrators ensure the integrity of all of their identity verification transactions.

    Microsoft Identity LifeCycle Manager: IAM with SafeNet Enterprise HSM
    SafeNet Enterprise HSM (formerly Luna SA) integrates with Microsoft Identity LifeCycle Manager to provide users with an IAM solution.

    Microsoft Internet Authentication Service/Network Policy Server: Network Access with SafeNet Authentication Service

    SafeNet Authentication Service integrates with Microsoft Internet Authentication Service/Network Policy Server to provide users with a network access solution.

    Additional Resources:

    Agent Configuration Guide for Microsoft IAS and NPS

    Microsoft Internet Authentication Service/Network Policy Server: Remote Access with SafeNet Authentication Solutions
    SafeNet Authentication Service and SafeNet Authentication Manager both integrate with Microsoft Internet Authentication Service/Network Policy Server to provide users with remote access solutions.

    ISA 2006: VPN with SafeNet Authentication Service

    Internet Security and Acceleration (ISA) Server 2006 are to be used in conjunction with Outlook Web Access (OWA) 2007 to view e-mail via web browser authenticating against SAS, using SafeNet tokens.

    SafeNet Authentication Service (SAS) delivers a fully automated, versatile, and strong authentication-as-a-service solution. With no infrastructure required, SafeNet Authentication Service provides smooth management processes and highly flexible security policies, token choice, and integration APIs.

    Resources and Additional Information

    SAS Protecting Microsoft Internet Security 2006 and Microsoft OWA 2007  

    Microsoft Identity Manager (MIM) 2016: IAM with SafeNet Authentication Client

    Microsoft Identity Manager (MIM) 2016 builds on the identity and access management capabilities of FIM 2010 R2 Microsoft Forefront Identity Manager (MIM) provides identity synchronization, user provisioning, certificate and password management, and policy management in a single solution that works across heterogeneous systems.

    SafeNet Authentication Client (SAC) is a PKI middleware application that provides a secure method for exchanging information based on public-key cryptography, enabling trusted third-party verification of user identities.

    Resource and Additional Information

    SAC Using CBA for Microsoft Identity Manager 2016 SP1 Certificate Manager

     

    Microsoft Solutions: Identity Verification and SafeNet Authentication Solutions

    Gemalto's SafeNet portfolio of authentication solutions provide front-end identity verification for a number of Microsoft products.

    Organizations have a wide variety of authentication options that address the challenges posed by workforce mobility and password proliferation. SafeNet authentication solutions offer flexible service delivery that simplifies implementation and management. Automated processes significantly reduce the time and cost of provisioning, administering, and managing users and tokens compared to traditional authentication models.

    SafeNet authentication solutions secure access to the following Microsoft products:  

    Active Directory Certificate Services 
    Active Directory Rights Management Services
    Active Directory Federated Services
    Authenticode
    Azure
    Bitlocker
    Forefront Identity Manager
    Forefront Threat Management Gateway
    Forefront Unified Access Gateway
    Internet Authentication Service (IAS)
    Internet Information Services (IIS)
    Internet Security and Acceleration Server 2006 (ISA)
    Online Certificate Status Protocol (OCSP)
    Office 365
    Outlook Web Access
    Remote Web Workplace
    RD Web Access (RDWeb, formerly TSWeb)
    SharePoint
    SQL Server 2008
    Windows 2008R2 SSTP (Secure Socket Tunneling Protocol)
    Windows Logon
    Windows Storage Servers  
     

     


    Office 365 ProPlus: SaaS with SafeNet Authentication Solutions

    Office 365 ProPlus is a productivity software (including Word, PowerPoint, Excel, Outlook, OneNote, Publisher, Access, and Lync) that is installed on your desktop or laptop computer. It is a user-based service that allows users to access Office experiences on up to five PCs or Macs, and on their mobile devices.

    SafeNet Authentication Service (SAS) delivers a fully automated, versatile, and strong authentication-as-a-service solution. With no infrastructure required, SafeNet Authentication Service provides smooth management processes and highly flexible security policies, token choice, and integration APIs.

    SafeNet Authentication Client (SAC) is a PKI middleware application that provides a secure method for exchanging information based on public-key cryptography, enabling trusted third-party verification of user identities.  

    Resources and Additional Information

    SAS as an Identity Provider for Office 365 ProPlus
    SAS Push OTP as an Identity Provider for Microsoft Office 365 ProPlus
    SAC Using CBA for Office 365 ProPlus

     

    Microsoft Office 365: Identity Verification and SafeNet Authentication Solutions

    Microsoft Office 365 delivers standard Office applications and files directly from the cloud for flexible yet reliable access to the applications that enterprises depend on. With Office 365, users’ applications and files are persistently available whether the user is offline at their desk, online, or on a mobile device. Office 365 supports both Windows and Mac operating systems.

    SafeNet authentication solutions seamlessly integrate so organizations can leverage Office 365’s flexibility while significantly reducing the risk of unauthorized access to corporate resources stored or run in the cloud. Using the Microsoft Active Directory Federation Services (AD FS), SafeNet Authentication hardens access to Office 365 by adding a second layer of identity verification to ensure that only authorized users gain entry to protected applications. If AD FS is used for multiple cloud applications, SafeNet authentication solutions can unify authentication policies for the entire IT environment making identity verification easy across the entire enterprise.

    Resources and Additional Information:

     

    SafeNet Authentication Service and Microsoft Office365 Solution Brief 

    Protecting Microsoft Office365 with SafeNet Authentication Service Integration Guide

    Using SAC with CBA for Office 365

    Implementing authentication and access controls for office 365

    Online Certificate Status Protocol: Certificate Services and SafeNet Enterprise HSM

    Microsoft Online Certificate Status Protocol (OCSP) is used to validate a certificate’s status in real-time. Using OCSP, administrators manage and distribute revocation status information on certificates in PKI environments. OCSP integrates with SafeNet Enterprise (formerly Luna SA) HSM to verify, and revoke if necessary, certificates residing in the hardware security module.

    Luna HSM and OCSP Integration Guide

     

    Web Application Proxy: SaaS with SafeNet Authentication Solution

    Web Application Proxy is a role service of the Remote Access server role in Windows Server® 2012 R2. Web Application Proxy provides reverse proxy functionality for web applications inside your corporate network to allow users on any device to access your web applications from outside the corporate network.

    SafeNet Authentication Service (SAS) delivers a fully automated, versatile, and strong authentication-as-a-service solution. With no infrastructure required, SafeNet Authentication Service provides smooth management processes and highly flexible security policies, token choice, and integration APIs.

    Resources and Additional Information

    SAS Using RADIUS with Web Application Proxy Integration Guide

     

    Outlook Web App: SaaS with SafeNet Authentication Service

    Outlook on the web (formerly known as Outlook Web App or Outlook Web Access) is a browser-based email client. Outlook on the web lets you access your Microsoft Exchange Server mailbox from almost any web browser. 

    SafeNet Authentication Service (SAS) delivers a fully automated, versatile, and strong authentication-as-a-service solution. With no infrastructure required, SafeNet Authentication Service provides smooth management processes and highly flexible security policies, token choice, and integration APIs.

    Resources and Additional Information

    SAS Using SAML as an Identity Provider for Microsoft Outlook Web App

     

    Microsoft Outlook Web Access: Virtual Desktop Infrastructure with SafeNet Authentication Service

    SafeNet Authentication Service integrates with Microsoft Outlook Web Access to provide users with a virtual desktop infrastructure solution.

    Resources and Additional Information:

    SafeNet Authentication Solutions for Microsoft Office Web Access Integration Guide

     

    Microsoft Outlook Web Access: Remote Access with SafeNet Authentication Solutions

    SafeNet Authentication Service and SafeNet Authentication Manager both integrate with Microsoft Outlook Web Access to provide users with remote access solutions.

     

    Microsoft Internet Security and Acceleration and Outlook Web Access: Remote Access with SafeNet Authentication Service

    SafeNet Authentication Service integrates with Microsoft Internet Security and Acceleration and Outlook Web Access to provide users with a remote access solution.

    Additional Resources:

    Microsoft Remote Web Workplace: Virtual Desktop Infrastructure with SafeNet Authentication Service
    SafeNet Authentication Service integrates with Microsoft Remote Web Workplace to provide users with a virtual desktop infrastructure solution.

    Routing and Remote Access service: Remote Access with SafeNet Authentication Service

    Microsoft Routing and Remote Access service (RRAS)  is a software router and an open platform for routing and networking. Its routing services can be used by organizations in local area network (LAN) and wide area network (WAN) environments or over the Internet by using secure VPN connections. Routing is used for multiprotocol LAN-to-LAN, LAN-to-WAN, VPN, and network address translation (NAT) routing services.

    SafeNet Authentication Service (SAS) delivers a fully automated, versatile, and strong authentication-as-a-service solution. With no infrastructure required, SafeNet Authentication Service provides smooth management processes and highly flexible security policies, token choice, and integration APIs.

    Resources and Additional Information

    SAS Using RADIUS Protocol for Microsoft RRAS

    SharePoint: Web Services and SafeNet Data Protection

    SharePoint is a collaboration and file sharing platform that facilitates content management and communication throughout an enterprise. Available as an on premises deployment or as a hosted service, SharePoint offers flexible deployments to match the needs of small and large scale enterprises alike. The ability to consolidate resources from disparate collaboration solutions onto SharePoint makes it possible for administrators to reduce training and maintenance expenses while also increasing IT productivity.

    For organizations needing to secure SharePoint deployments, SafeNet Enterprise (formerly Luna SA) HSM can serve as the trusted root for the encryption features offered by Microsoft Active Directory Rights Management Services (AD RMS), Microsoft SQL Server, and Microsoft Internet Information Services (IIS). Despite the use of multiple Microsoft encryption solutions, a single SafeNet Enterprise HSM can store keys from the disparate deployments to provide a security foundation to data in use, at rest and in transit.Microsoft integrates with both SafeNet Luna SA and SafeNet Authentication Service to provide users with a web services solution.

    In addition to storing encryption keys, SafeNet Enterprise HSM improves overall performance by offloading resource intensive SSL operations from the IIS server. This added benefit ensures that administrators need not choose between performance and security when protecting network communications.

    Additional Resources 

    SQL Server 2008/2012: Encryption Key Storage and SafeNet Enterprise HSM

    Microsoft SQL Server is a powerful relational database that enables organizations to scale operations with confidence, improve IT and developer efficiency, and effectively manage business intelligence on a self-service basis. With SQL Server, enterprises can process large volumes of data in fractions of a second making data mining and near instant insights easy.

    SafeNet Enterprise (formerly Luna SA) HSM integrates with Microsoft SQL Servers to securely store encryption keys and manage such cryptographic operations as key creation, deletion, SQL encryption, and SQL decryption. SafeNet Enterprise HSM's addition allows administrators to store SQL server’s master cryptographic keys within a protected hardware appliance and not on the same software platform where encrypted data is stored. Verifiable audit trails act as a deterrent and serve as evidence that keys are properly managed and secured throughout their entire lifecycle to make demonstrating compliance easier.

    In addition to the SafeNet Enterprise HSM, the high-security SafeNet PCI-E (formerly Luna PCI) HSM accelerator card can also be integrated directly in the Microsoft SQL Server. When embedded, the SafeNet PCI-E HSM adds security, accelerated cryptographic performance and CPU offload to improve overall performance.

    Resources and Additional Information

  • Microsoft SQL Server 2008 and SafeNet Enterprise HSM Solution Brief

  • Microsoft SQL Server and SafeNet HSMs Integration Guide

  •  

    SQL Server 2008/2012 Database Encryption

    Microsoft SQL Server is a powerful relational database that enables organizations to scale operations with confidence, improve IT and developer efficiency, and effectively manage business intelligence on a self-service basis. With SQL Server, enterprises can process large volumes of data in fractions of a second making data mining and near instant insights easy.

    Gemalto SafeNet KeySecure encryption platform secures SQL Server databases through granular field or column-level encryption. The appliance’s high-performance cryptographic processing allows administrators to offload critical encryption tasks so security efforts do not impact database operations. Large enterprises with disparate encryption systems can also employ SafeNet KeySecure as an external key manager and storage device for third-party encryption offerings. Consequently, organizations employing SQL Server’s encryption capabilities can store those cryptographic keys, as well as keys for other encryption products, on the appliance. SafeNet KeySecure maximizes overall security and streamlines security administration to help ensure organizations are compliant with a range of security best practices and regulations.

     

    Windows Hardware Lab Kit (Windows HLK) with SafeNet HSM

    The Windows Hardware Lab Kit (Windows HLK) is a test automation framework provided by Microsoft to certify devices for Windows. Microsoft's Windows Certification Program, lays out procedures for submitting hardware and software modules, including drivers, for Microsoft quality assurance tests. Passing the tests qualifies the hardware/software for Microsoft certification, which verifies both the driver provider's authenticity and the driver's safety and functionality.

    To digitally sign and certify a device driver, a Windows Hardware Lab Kit (HLK) package, which includes the driver and the related hardware, should be submitted to the Windows Certification Program for testing, using the Windows Dev Center Hardware Dashboard Services (the Hardware Dashboard).

    SafeNet Luna HSM is used to secure the package signing keys.

     

    Additional Resources

    Windows HLK and SafeNet Luna HSM Integration Guide

     

    Window 10: Network Access with Gemalto's SafeNet Authentication Client

    SafeNet Authentication Client (SAC) integrates MS Windows 10 to provide users with network access solution.

    Resource and Additional Information

    SAC using CBA for Windows 10 and Wi-Fi Network

     

    Microsoft Windows 2008R2 Secure Socket Tunneling Protocol (SSTP): with SafeNet Authentication Manager

    SafeNet Authentication Manager integrates with Microsoft Windows 2008R2 Secure Socket Tunneling Protocol (SSTP) to provide users with a remote access solution.

    Resources and Additional Information:

  • Deploying Microsoft SSTP using SafeNet Authentication Manager Integration Guide

  •  

    Microsoft Windows Logon: Network Access with SafeNet Authentication Service

    SafeNet Authentication Service integrates with Microsoft Windows Logon to provide users with a network access solution.

    Resources and Additional Information:

  • Agent Configuration Guide for Microsoft Windows Logon

  •  

Back to Partner Search

お問い合わせ

 

セーフネットへご関心をお持ちいただき、有難う御座います。セーフネットへのお問い合わせにつきましては、当フォームに必要事項をご記入いただき、SUBMITボタンをクリックして頂きますようお願い申し上げます。弊社担当者よりご連絡させて頂きます。

 

お問い合わせフォーム

* メールアドレス:  
* 名:  
* 姓:  
* 企業名:  
* 電話番号:  
* 国:  
* State (US Only):  
* Province (Canada/Australia Only):  
* 市町村  
コメント:  
 


Submit(送信)ボタンをクリックすることにより、私はジェムアルトのプライバシーポリシーに記載されている通り、ジェムアルト及びその関連会社から情報を受け取ることに同意します。