Upload
others
View
4
Download
0
Embed Size (px)
Citation preview
Alex Wong – Senior Manager - Product Management Bruce Ong – Director - Product Management
1
SYMANTEC VISION 2014
Product Roadmap Disclaimer
“Any forward-looking indication of plans for products is
preliminary and all future release dates are tentative and are
subject to change. Any future release of the product or planned
modifications to product capability, functionality, or feature are
subject to ongoing evaluation by Symantec, and may or may not
be implemented and should not be considered firm
commitments by Symantec and should not be relied upon in
making purchasing decisions.”
2
SYMANTEC VISION 2014
Agenda
3
Symantec Identity Platform Strategy 1
Overview of Symantec Identity Access Manager (SIAM) 2
Demo of SIAM SSO and Administration Portal 3
What’s next? 4
Q/A 5
SYMANTEC VISION 2014
0010101001010010011010
1010101101010101001001
0000100100101001010110
0101010010100100110101
0010101001010010011010
1010101101010101001001
0000100100101001010110
0101010010100100110101
Key Trends Impacting our Customers
4
New Platforms, Devices /BYOD
App Centric World
Data in the Cloud
User Experience is Paramount
Enterprises are seeking solutions to support these trends!
SYMANTEC VISION 2014
What do customers tell us?
5
“40% of the calls to my team are related password reset”
“The process to provision and deprovision employees to web apps is a manual and tedious process”
“"How can you ensure "context-aware" authentication to applications and VPN?”
My team has sensitive information that is uploaded to web applications like SFDC. How can I protect that content to ensure if doesn’t get in the wrong hands?.”
SYMANTEC VISION 2014
Information Protection
Access Management
Enterprises are seeking solutions to support these trends!
Solution: Symantec Identity Platform
6
• End to end (all-in-one security engine, 4 layers of protection)
• Intelligent (provisioning, identity and content aware)
• Integrated (VIP/PKI, DLP/PGP, User Provisioning)
• Flexible (on-premise or hosted, “a la carte” modules)
Integrated Identity, Authentication, Content, and Provisioning engine
User Authentication
User Provisioning
Identity and Access Management 2H CY 2014
Info Protection 1H CY 2015
Provisioning 2H CY 2015
Overview for Symantec Identity Access Manager (SIAM) Cloud Single Sign-on and Access Control
Alex Wong Senior Product Manager
7
SYMANTEC VISION 2014
A New Cloud Protection Platform
8
Identity-based Access Control
Single Sign-on with Strong Authentication
Public and private cloud applications
User Directory
SYMANTEC VISION 2014
User Management
• Embedded virtual user directory
• Self-Service registration, profile management, password reset
• Use credential at SSO Portal to access Web applications
Access Management
• Policies based on user’s identity and session context
• VIP, RSA and User certificate integration
• Rich access audit logs
Single Sign On with Strong Authentication
• SSO to any web application
• Federation: SAML and HTTP-Fed applications
• Plug-in for consumer sites
• Extensive built-in app catalog
High level Feature Set
9
SYMANTEC VISION 2014
How Symantec SIAM Works
10
SIAM
Gateway
IDP, IWA, mPKI Any User Store
LDAP RDBMS
Layered Protection 2F Authentication
Admin Console
Compliance
Identity & Context based access control
1
6
5 4
3 2
SYMANTEC VISION 2014
• Self-service registration
• Self password reset/recovery
• User group management
SIAM User Directory 4
• AD, LDAP, RDBMS
• SAML IDP
• Multi ID-service support
Identity-Services 3
• Application connector management, including user defined applications
• Context-based access policy definition
• Gateway configuration
• Gateway status monitoring & reporting
• User directory management
SIAM Admin Console 2
SIAM – Feature Details
11
•User Devices
Browser Add-on
Browser Client
Admin
SIAM Platform
SSO portal
Admin Console
Self Service portal
Access Gateway Local User Store
Web SSO
Registration & Password Mgmt
• Out of box SSO & App usage reports
• Custom reports via log Syslog export
Audit & reporting 5
• SSO Portal with mPKI/VIP/IDP support
• Runtime policy enforcement point
• Application access broker
• VM appliance, single tenant
• Symantec or Customer hosted
• HA / DR cluster support
• Browser Add-On (optional)
SIAM Gateway 1
• SAML, Web-Login, NTLM 2.0 apps
• Out-of-box app catalog
• New apps through self-service
Application Connectors 3
Ext. ID-service
SYMANTEC VISION 2014
Compliance
• Consolidate application logs
• Reduce effort and lower costs for audit
Control
• Enforce Identity-based access policy
• Internal, remote and mobile users
• Global de-provisioning
Convenience
• Better experience through SSO
• Leverages existing identity infrastructure
• Out of box user management capabilities
A Strategic Solution for Cloud Security
12
Thank You!
13
SYMANTEC VISION 2014
AD
Customer Hosted
Mobile User
Internal User
SIAM Gateway
Flexible Deployment Model: On-Premise or Symantec Hosted
14
Symantec-hosted
Mobile User
Internal User
ID B
ridge
SIAM Gateway
SYMANTEC VISION 2014
SSO Login page (with customization and different IDPs)
15
SYMANTEC VISION 2014
Catalog page
16
SYMANTEC VISION 2014
Admin Console- Dashboard
17
SYMANTEC VISION 2014
Admin Console- Policy Engine
18
SYMANTEC VISION 2014
Admin Console – App Connectors
19
SYMANTEC VISION 2014
Mobile SSO (with Different IDP)
20
SYMANTEC VISION 2014
Mobile Catalog (with Filters)
21