Chapter 1: Introduction
SafeWord components and functions
4
Additional capabilities can be added by installing optional servers and agents
that offer tremendous flexibility in securing critical network resources.
Figure 1:
SafeWord core
components
The SafeWord server
The SafeWord server is comprised of the SafeWord database, the
Authentication Engine (AAA), the Administration Service (or Administration
Server), and the User Center (UC).
•
The SafeWord database serves as the repository for token records.
•
The Authentication Engine (sometimes referred to as the AAA, or Auth
server) verifies that the passcode supplied with an access request is
correct for the token assigned to a specific user.
•
The Administration Service (Server) is used by the console to perform the
tasks initiated by administrators or users, and synchronizes SafeWord
database data in configurations with multiple servers.
•
The User Center allows end users to enroll their SafeWord tokens, which
saves administrative time when a large number of users will be
authenticating with SafeWord tokens. Users can also change or assign
their PIN, resync their tokens, and test their tokens after enrollment.
Encrypted
SSL
Handles access control,
Executes management
verifies credentials, logs
authentication attempts.
console commands,
secures access to database
server, replicates data to other
Repository for all SafeWord
data.
SafeWord
Server
Active Directory
SafeWord 2008 Management
AAA
DB
AS
Encrypted
SSL
Auto Updater
Agent (AUA)
Console (ESP only)
SafeWord databases.
Management Snap-in
UC
User enrollment center