BIIM Support     Overview Installation Using the BIIM MFA Authentication - TPM - Biometrics - SmartCards / Tokens Windows Client Logon Single Sign On Secure eWallet Document Manager Managing My Identity BioCert BIIM Settings AD & LDAP Integration

BioCert® Intelligent Identity Manager Support

Help Documentation for the BioCert BIIM.

Getting Started

BioCert® Intelligent Identity Manager improves system security and productivity by consolidating user passwords and network accounts within a single data unit called User Identity. Strong Multifactor Authentication and encryption protect User Identity and allow secure and convenient access to registered applications after logon to the BioCert® Identity.

BioCert® Intelligent Identity Manager™ - How it Works

Swiping Your Finger on the PCLokR - How to Swipe:

"Slow and Steady", swipe the entire pad of your finger on the PCLokR PC Pad as in the following clip:

BioCert® Intelligent Identity Manager™ - How it Works

Default Configuration

The default configuration after installing BioCert® Intelligent Identity Manager™

The default configuration allows the user to log on to Windows, manage Windows network accounts, use the Single Sign On feature, modify account profiles, register credentials for authentication, and perform a number of operations on user identities. In addition, administrators can manage the computer settings as described in Settings and Options.

Microsoft Network Logon

The user uses the Windows account to log on to the computer. The Windows account becomes the default network account, if user follows the instructions during the first time logon into BioCert® Intelligent Identity Manager™. The user can manage the network accounts using Microsoft Network Logon section provided they have Administrator access privileges to the local PC.

Use Microsoft Network Logon section of BioCert® Identity dialog box to register and manage local or network accounts within the User Identity. The user can consolidate all local and network accounts in the Network Logon component of the BioCert® Identity Manager.

Single Sign On

Single Sign On (SSO) functionality is available in the default configuration of BioCert® Intelligent Identity Manager™. The SSO engine automatically detects logon dialogs and Web pages (Firefox and Internet Explorer). After the dialog is detected as an SSO window, an SSO button is displayed in the windows caption.

In addition to the automatic SSO detection feature, the user can manually add the desired SSO dialogs for applications, terminal emulation sessions and Web pages using Single Sign On section.

The Single Sign On feature stores user names and passwords for multiple applications and automatically submits logon credentials when a registered application is accessed.

To register and manage Windows or Web applications, to set various logon options for each registered application, and to customize Single Sign On settings:

• Select the BioCert® Identity dialog box > Single Sign On.

User self-service

BioCert® Identity provides a standard tool, BioCert® Identity User Administration, for all user self-service tasks. A user can perform complete life cycle management of his identity and built-in security applications within the parameters permitted by centralized self-service policies.

User self-service significantly reduces administrative workload by making the user responsible for maintenance of his identity. Supported self-service functionality includes user's profile maintenance, enrolling/changing credentials, registering new SSO applications, issuing and installing new certificates, and adding new network/VPN accounts.

First time logon - Easy Installation

When launching BioCert® Intelligent Identity Manager™ for the first time, the user enters the regular Windows password. 

Logon using various authentication policies

After the user logs on to BioCert® Identity Manager, the user can register additional credentials, including a fingerprint or smart card. During the next logon, the user can select the logon policy and use any registered credentials or any combination of them.

Sign up for a new account

A local PC or Network Administrator can create a new user profile in the system. The administrator is prompted to submit data for the new profile, including user name, last name, address, and so forth, and then registers the desired credentials. The newly created user automatically logs on to BioCert® Identity Manager.

User Identity Operations What Is User Identity?

User Identity consolidates and protects all private user information that may include network and local Windows accounts, application passwords, remote connection credentials, certificates, and encryption keys. A user has complete control over User Identity through User Identity Operations.

User Identity Protection

A user can set up strong Multifactor Authentication Policy to protect access to User Identity.

User Identity Composition

A user can control the data that goes into User Identity through Identity Services, such as Network Logon and Single Sign On.

User Identity Backup and Restore operations

User Identity consolidates and protects all private user information that may include network and local Microsoft Windows accounts, passwords for SSO applications, remote connection credentials, certificates, and encryption keys. The user has complete control over user identity through User Identity operations. The user can back up the User Identity after modifications.

When a backup has been created, the User Identity can be used on another computer or restored in case of system failure. Select in the I Want To ... section of BioCert® Identity dialog box to get access to these operations.

Built-in security services and applications

BioCert® Intelligent Identity Manager™ supports intranet, extranet, and legacy systems with its built-in security applications. The following security applications are included:

• User self-service and self management
• New user self-registration Network logon for Microsoft Windows® and Novell Netware®
• Support for Microsoft Terminal Services and Citrix Metaframe
• VPN and Remote Access
• Enterprise Single Sign-On
• PKI client and smart card support
• Web access management

Security Benefits

• Policy enforcement on local PC
• Consolidated credentials
• Layered security in compliance with enterprise security standards
• Use authentication method that fits best methods and workflow.
• Strong multifactor user authentication utilizing the latest in biometric and smart card technology
• Easy deployment of smart card/virtual token combination

Productivity benefits for the user

• Single easy to learn self-service BioCert® Identity user interface
• Launch panel provides immediate access to authorized applications
• User can add new SSO applications, eliminating need for passwords
• Use of biometrics or smart card can enhance security and reduce reliance upon outdated and insecure password technology.
• A built-in BioCert® Identity user self-registration service facilitates new user setup. Virtual tokens allow permanent access to identity.

Functional Difference Between Desktop and VSAM

• The BioCert® Intelligent Identity Manager™ Desktop Edition allows for local management of an unlimited number of LOCAL users on a single PC.  This PC may be connected to a network or VPN or may be a shared office computer on a network.
• The VeriSoft Access Manager Server Edition is designed for network administrators that want to have a central management console and support the ability of Active Directory or other LDAP 3.0 compliant systems or wish to use roaming profiles among users that use multiple PCs or synchronization through the console of a local desktop and remote user or portable PC.