EToken and PGP Desktop 10.1 Integration Guide Introduction iii Contacting SafeNet We work closely with our reseller partners to offer the best worldwide technical support services. Your reseller is the first line of support when you have questions about products and services. SafeNet Authentication Client (SAC) is a PKI middleware application that provides a secure method for. Stormshield Data Security Suite – Version 9.1 Audience. For further details, refer to the SafeNet Authentication Manager Administrator’s Guide. Users must have a SafeNet token enrolled with the appropriate certificate.

1 Gemalto s SafeNet Authentication Client MAC CUSTOMER RELEASE NOTES Version: 9.1 Mac Build 2 Issue Date: 12 November 2015 Document Part Number:, Revision A Contents Product Description. 2 Release Description. 2 Default Password. 2 Advisory Notes. 2 AKS Bundle Support Script (supported only on Yosemite). 2 Compatibility Information.

3 Operating Systems. 3 External Smart Card Readers. 4 Localizations. 4 Installation and Upgrade Information. 4 Installation. 5 Resolved Issues (Mac). 5 Known Issues (Mac).

6 Product Documentation. 7 Support Contacts.

7 Page 1 of 72 Product Description Gemalto s SafeNet Authentication Client is public key infrastructure (PKI) middleware that provides a secure method for exchanging information based on public key cryptography, enabling trusted third-party verification of user identities. It utilizes a system of digital certificates, certificate authorities, and other registration authorities that verify and authenticate the validity of each party involved in an Internet transaction. Release Description The SAC 9.1 Mac release includes added support for El Capitan and covers bug fixes since the last version. Licensing The use of this product is subject to the terms and conditions as stated in the End User License Agreement. A valid license must be obtained from the SafeNet License Center: Default Password SafeNet etoken devices are supplied with the following default token password: We strongly recommend that users change the token password upon receipt of their token. Advisory Notes AKS Bundle Support Script (supported only on Yosemite) Due to customer issues, which related to tokens working in CCID mode on Mac 10.9, an AKS bundle support script was written to change the device connectivity from CCID to VSR (AKS) (i.e. The script allows end-users to choose which driver to work with: VSR (AKS), or CCID).

To convert to VSR mode: From your terminal, run the script using the following command: sudo /script location/set2vsr.sh This script comments the line in the CCID (ifd-ccid.bundle) driver, and then uncomments the relevant lines in the VSR (aks-ifdh.bundle) files. To convert to CCID mode: From your terminal, run the script using the following command: sudo/script location/set2ccid.sh This script comments the line in the VSR (aks-ifdh;budle) driver, and then uncomments the relevant lines in the CCID (ifd-ccid.bundle) files.

Software-Generated One-Time Passwords.SafeNet’s MobilePASS family of one-time password (OTP) software authentication solutions combines the security of proven two-factor strong authentication with the convenience, simplicity, and ease of use of OTPs generated on personal mobile devices or PCs. By turning a mobile phone into a two-factor authentication device, organizations save significantly on hardware and deployment costs, while users benefit by not having to carry an additional hardware token around with them.Access Control for Remote and Local Networks.Compatible with the broadest range of mobile clients, MobilePASS provides powerful identity protection and convenient access control for remote access systems, such as VPNs, Citrix applications, Cloud applications, Outlook Web Access, and Web portals. It also offers strong authentication for secure local network access.Optimized Security.Sophisticated security capabilities, including standards-based activation and dynamic seeding, allow organizations to optimize the balance between ease-of-use and TCO without compromising on security. In addition, central management of MobilePASS alongside other SafeNet authentication solutions enables organizations to adopt a layered approach to security by deploying different authentication devices and methods for different groups of users.- See more at: http://www.safenet-inc.com/multi-factor-authentication/authenticators/software-authentication/mobilepass-otp-authenticator/.

Software-Generated One-Time Passwords.SafeNet’s MobilePASS family of one-time password (OTP) software authentication solutions combines the security of proven two-factor strong authentication with the convenience, simplicity, and ease of use of OTPs generated on personal mobile devices or PCs. By turning a mobile phone into a two-factor authentication device, organizations save significantly on hardware and deployment costs, while users benefit by not having to carry an additional hardware token around with them.Access Control for Remote and Local Networks.Compatible with the broadest range of mobile clients, MobilePASS provides powerful identity protection and convenient access control for remote access systems, such as VPNs, Citrix applications, Cloud applications, Outlook Web Access, and Web portals. It also offers strong authentication for secure local network access.Optimized Security.Sophisticated security capabilities, including standards-based activation and dynamic seeding, allow organizations to optimize the balance between ease-of-use and TCO without compromising on security. In addition, central management of MobilePASS alongside other SafeNet authentication solutions enables organizations to adopt a layered approach to security by deploying different authentication devices and methods for different groups of users.- See more at: More. Features. Policy-based Token Configuration. Time-sync and event-based OTP.

Challenge response. Configurable PIN and token policy.

Automatic one-step installation and activation – no need to activate on an external Web portal. Policy-based activation determines token configuration. BES one-click installation and activation. Zoiper for mac. Highly secure standards-based activation. Dynamic re-seeding means organizations control their own seed data. Enables organizations to implement a layered security approach for different risk profiles.

PIN protection.