Your suggested change has been received. Thank you.

Suggest A Change

Thank you! Your suggestion has been submitted.

https://thales.na.market.dpondemand.io/docs/dpod/services/kmo….

There are some errors in your form.

Your Name This field is required

Your Email This field is required

How can we improve this content? This field is required

SAS PCE documentation
- Explore Thales Docs

SAS PCE
Agents
MobilePASS+
SafeNet Access Exchange
BSIDCA API
- BSIDCA endpoints
- BSIDCA custom attributes
Integrations
Account management
Release Notes

All

All

SAS PCE

Get started

Please Note:

SAS PCE
Get started
- System Requirements
- Installation
  - Install SafeNet Authentication Service
  - Prepare database
  - Configure SafeNet Authentication Service
  - Configure SafeNet Authentication Service for High Availability
  - Configure for MobilePASS and MobilePASS+ Enrollment
  - Onboarding for MobilePASS+ enrollment
  - Security and Compliance
- Upgrade
  - SafeNet Authentication Service pre-upgrade checklist
  - SafeNet Authentication Service upgrade - primary data center
  - SafeNet Authentication Service upgrade - secondary data center
  - SafeNet Authentication Service post-upgrade checklist
  - Additional Considerations
- System setup
  - Setup
  - Communications
  - Logging
Dashboard
- On-Boarding
- Virtual Servers
- Administration
Users and groups
- Configure individual users
- Manage tokens for a user
- Groups
- Containers
- Restrict access based on the time, day, or date
- User Policies
User synchronization
- LDAP sync server settings
- LDAP integration
- LDAP settings
Operators and roles
- Operators
- External Operators
- Provision roles automatically
- Alerts
Tokens
- Token types
  - Hardware tokens
    - OTP hardware token
    - KT-4 tokens
    - RB-1 tokens
  - Software tokens
    - GrIDsure
    - SMS OTP token
  - Third Party tokens
- Token allocations
- Token templates
- Token restrictions
- Temporary Password Policy
- Token Passcode Processing Policy
- Configure server-side PINs
- Token synchronization
- Import SafeNet tokens
- Token inventory
- Deallocate inventory
- MobilePASS target and Push OTP settings
- SMS credits
- SMS/Email/Voice OTP Delivery Methods
- Quicklog authentication
- Initialize hardware tokens
Provisioning tokens to users
- Provision tokens
- Automate token provisioning
- Provisioning tasks
- Assign a hardware token to a user
- Bulk assign third-party tokens
Push OTP
- Requirements and considerations for Push OTP
- Enable Push OTP and MobilePASS+
- Push OTP Rejection Policy
- Customize Push notifications and alerts
- Configure applications for Push OTP
- Token management and enrollment
- Push OTP authentications
RADIUS integration
- RADIUS third-party token support
- RADIUS attributes for users or groups
- Block RADIUS authentication
Server and agent settings
- Authentication Nodes
- Pre-authentication rules
- Restrict IP range
- Email server settings
- SMS settings
- Voice OTP settings
- Configure a voice provider
- FTP/SFTP/SCP settings
- Time zone offset
- Download an encryption key for agents
- Language
- Migrate SafeNet authentication servers
- Display Device Information
- Download an encryption key for remote services
Self-service site
- Site appearance and default language
- Self-Service Modules
- Self-Enrollment pages
- Configure authorities, OOB enrollment, and policies
- Process requests and view reports
Branding the appearance
- Customize email messages
- Customize SMS messages
- Customize voice OTP messages
Reports
- Billing reports
- Compliance reports
- Inventory reports
- Security policy reports
Troubleshooting
- Authentication errors
- Error codes

SAS PCE documentation
SAS PCE
Get started

Get started

SafeNet Authentication Service Private Cloud Edition (SAS PCE) is an on-premises authentication solution that delivers fully-automated, highly secure authentication with flexible token options that are tailored to the unique needs of your organization, substantially reducing the total cost of operation.

SafeNet Authentication Service (SAS) is an enterprise-class authentication server designed to extend authentication services to users in a single organization or across an unlimited number of entities. These entities can be almost anything, from divisions or cost centers within a company, to subsidiaries or completely independent organizations. Its multi-tier, multi-tenant structure accommodates just about any hierarchy, reporting structure, business structure, security segregation, or other delineation.

SAS is available as:

STA: Thales’s cloud-based highly secure, software as-a-service authentication platform with no hardware requirements, providing 24/7 availability. By leaving security to the experts, organizations can have peace of mind knowing their systems are secure, and always available, in a trusted cloud environment. In addition, using one cloud-based platform to manage, maintain, and provision a wide-range of tokens, STA can grow with your organization’s requirements—securing an infinite number of users in a variety of token form factors.

For more information, see Safenet Trusted Access
SAS - Private Cloud Edition (PCE): Providing organizations with an on-premises authentication management solution. SAS can be used to extend authentication services beyond the corporate perimeter. Users can authenticate with the same user ID and token(s) that they use for the corporate network - providing a single, consistent, and familiar login experience.
SAS PCE Enterprise: Elevate your security and IAM use cases with SAS PCE Enterprise, the advanced iteration of SafeNet Authentication Service Private Cloud Edition (SAS PCE). Now featuring SafeNet Access Exchange (SAE), our on-premises Identity Provider (IDP) seamlessly integrates with SAS PCE to offer robust multi-factor authentication (MFA) and Single Sign-On (SSO) for applications using SAML or OIDC protocols.

Key Features:
- Comprehensive Multi-Factor Authentication: Ensure secure access with token-based MFA, reducing the risk of unauthorized access.
- Seamless Single Sign-On: Enhance user experience with SSO, allowing users to authenticate once and access multiple applications without repeated logins.
- Integrated Authentication Requests: If an SSO session exists for the same user and browser, SAE authorizes access without invoking SAS PCE for token-based MFA, streamlining the authentication process.
- STA Hybrid Access Management: SAE plays a pivotal role in STA Hybrid Access Management Add-On deployments, providing a unified solution for complex authentication needs.

This documentation is exclusively created for SAS and SAS PCE Enterprise.

On this page

SafeNet Authentication Service Private Cloud Edition

© Copyright 2019-2024, Thales Group

+1 410-469-1651 supportportal.thalesgroup.com

Support
- Customer Release Notes
- Customer Support Portal
Legal

© Copyright 2019-2024, Thales Group

+1 410-469-1651 supportportal.thalesgroup.com