Terminology
The following terms are used in the document:
-
SafeNet IDPrime Virtual Server - The server handles the IDPrime Virtual HSM and database. It exposes an API that allows the client side to perform private key cryptographic operations within the HSM.
-
SafeNet IDPrime Virtual Client - The client emulates IDPrime smartcard on the user’s machine whereas the private key operations are done within the remote HSM managed by IDPrime Virtual server.
-
Identity Provider (IDP) - Identity provider is used for multi-factor authentication and authorization.
-
Credential Provider - The SafeNet IDPrime Virtual Credential Provider feature enhances the Windows logon state by allowing user to login to Windows using a SafeNet IDPrime Virtual smart card. After successful login, you are able to authenticate to Windows with your virtual smart card. It is required to connect to the IDPV server to load the smart card.
-
Connect On Behalf - Administrators can use Connect on Behalf of the User feature to connect to the server and perform various tasks on behalf of another user.
-
Offline Mode - The SafeNet IDPrime Virtual Offline mode allows user to connect their offline virtual card automatically without authenticating with the IDPV server first. User’s private keys are stored securely within a TPM, allowing the user to use the private keys even when no network connection is available or network disappears. It allows the user to perform read-only operations.
