Thanks to Visual Guard you can manage a single user list in Active Directory and implement Single Sign-on (SSO) authentication in your PB applications.
The Identity Federation features also provided by Visual Guard allow independent entities to access the same system, while using Windows accounts to authenticate users. Each organization still manages their own Windows accounts, stored in Active Directory.
In this video you will see how easy it is to integrate your PowerBuilder Applications with Active Directory and implement Single Sign On.
Going further you will discover all the possibility offered by Visual Guard to modernize your PowerBuilder Application security.
i.e. add 2 PBLs provided by Visual Guard to the application library list.
vge_n_cst_vgmanager uo_vgmanager uo_vgmanager = CREATE vge_n_cst_vgmanager
uo_vgmanager.of_verifyuser (…)The same method applies to both Windows accounts and Username/Password accounts. This will authenticate the user and download his access privileges (if any).
You may use this method if you defined restrictions for the user to access data and/or features in the application. One call in the ancestor window is enough to apply access privileges in the entire GUI.
Why spend months or years of complex developments, when you can easily implement a ready-to-use solution, embedding a complete feature set?Read More
We keep up with security standards and technologies for you, and assist you down the road for designing, installing and configuring your system.Read More
|User and Identity Management||Express||Professional||Enterprise|
|Number of user accounts
Each Enterprise license allows declaring a certain number of user accounts. Visual Guard can support millions of users, public-facing systems or multiple international corporate sites. You can choose to centralize all your security in a single Visual Guard instance, or a deploy distributed/regional security systems.
|up to 1000||up to 1000||unlimited,
depends on license (*)
Authenticate users with their Windows Accounts and grant them permissions and roles defined within Visual Guard.
Authenticate users with login/password accounts defined within Visual Guard. Define a password policy for these accounts (see below).
|User Self Registration
for login/password accounts, users can create their account themselves. You can let Visual Guard automatically grant them default roles. You can also require an admin validation before they can access your system.
Define a hierarchy of user groups, for instance replicating the hierarchical structure of your organization. Place users in 1 or several groups. Grant roles at group level.
Form-based authentication (both for windows accounts and login/pwd accounts)
|Windows SSO (Single Sign-On)
Visual Guard automatically authenticates users with the Account associated to the current Windows session. Users don't need to enter credentials to access your application(s).
For .NET desktop applications (WPF, Winforms): Visual Guard stores locally the user security data, and keeps managing authentication and permissions while offline.
|Custom Password Policy
For login/password accounts, you can customize the rules to define, renew, unlock and expire a password. For Windows accounts, the current Active Directory Password Policy will apply.
|Remote Windows Authentication
User can authenticate with their Windows credentials, even though they do not connect from your corporate network. Eg public wifi, mobile Internet, etc.
|Web SSO (Single Sign-On)
Single Sign-On across websites hosted in completely independent networks or companies. Users log once, and jump from a website to another, without loging in again
|Permissions and Roles management||Express||Professional||Enterprise|
|Manage permissions and roles
Define fine-grain permissions for each application feature or data you wish to restrict access to. Group permissions by permission sets and roles.
|Grant role(s) to Users|
|Grant role(s) to User Groups|
|Audit, Compliance, Segregation of duties||Express||Professional||Enterprise|
|Log Security and Business Events
Keep track of user logon, user operations, administrator operations...
Review events. Filter them with multiple criteria (per application, user, dates, device, type of event)
|Visual Guard Applications||Express||Professional||Enterprise|
|Windows Admin Console
Ready-to-use desktop application, used by administrators, developers and auditor to setup the environment, manage and audit application security
|Web Admin Console
Ready-to-use web application, used by administrators to manage daily security and auditors to control security
Developer utility, used to deploy a security database from dev to test, then production environments.
|Development technologies supported||Express||Professional||Enterprise|
|Secured API for application integration
Visual Guard exposes extended APIs that allows performing all security features by program. APIs are secured to rectrict operations based on security permissions granted.
|.NET integration, SharePoint
Native integration with Winform, WPF, ASP.NET, WCF, MVC, SharePoint Applications
Native integration with PowerBuilder Classic Applications
|Other technologies (Java, PHP, C++ )
Integration with any development technology capable of calling the Web Services exposed by the Visual Guard Server for Authentication, Authorization and Audit purposes.
|Number of applications secured
Centralize the securty of all your applications. Get a global overview of all users and their access rights across the entire IT system. Comprehensive and uniform Control and Audit for your application portfolio.
|N-tiers, Web and Desktop app
Secure any type of application
|Simple Network Configurations
Desktop applications with all clients running in the same Network and/or Web application(s) with Server(s) running in the same Network.
|Complex / multiple network configurations
Centralize security for applications running in any Network configuration. Support for multiple, independent networks, as well as independent, secured zones isolating database server, service layer and public facing UI (DMZ).
|Local Active Directories
Integration with 1 or several Active Directory located in the same forest than the application.
|Remote Active Directories
Federation of multiple Active Directories, hosted ni various network/companies
|Customizable Web Console
Get the full source code of the Web Admin Console, and adapt it for your business needs. Implement your business logic and corporate presentation standards, and call the Visual Guard API to perform any administration features. Our support team will guide you every step of the way.
|3rd party authentication/identities
Support for any type of user accounts/Identity(ies)/authentication process by developing custom modules within Visual Guard. Our support team will guide you every step of the way. (lien vers la decription du support VG).
|Custom security rules
Implement custom security rules for application security. For example, enforce segragation of duties by defining which roles ou user group should be mutually exclusive (can't be granted to the same user).Our support team will guide you every step of the way. (lien vers la decription du support VG).
See how to define permissions without touching the code of your application.
Simple, robust, full featured client
The support provided by Novalys has been excellent and very quick
Thanks to the Administration Console (and the different available roles) it is very easy to give the ability to create roles and users to business administrators and divide the tasks between the development team and the administrators.
The most important benefit of VG is that we have a central place to manage the authentication and the authorizations for all the company
A physician's primary goal is to give treatment not to remember their passwords [...] I think I'm saving 50% of time in such menial tasks like resetting passwords.