Home     |     Products     |     Services     |     Customers     |     Partners     |     About Us     |     News & Events     |     Support

Home >>  Products >>  VIS >>  VIS LDAP Proxy Firewall >>  Benefits

Virtual Identity Server - LDAP Proxy Firewall

Securing and Protecting Active Directory

Benefits


The Virtual Identity Server™ (VIS™), deployed as an LDAP proxy server provides the needed protection and security for Active Directory.

Active Directory Alone

  • Active Directory is vulnerable and unsecure to attacks such as denial of service.

  • Applications have more access then they need with the principle of least privilege being very hard to enforce.

  • Data in Active Directory is difficult to secure because administrators have little control over the applications accessing the data.

  • Poorly written applications can crash Active Directory causing outages for end users.

  • Active Directory performance is susceptible to inefficient queries that applications send.


Active Directory with Virtual Identity Server LDAP Proxy Firewall

  • Active Directory is more secure by being placed behind an LDAP firewall proxy server. Applications no longer access AD directly.

  • VIS provides data leakage prevention (DLP) by only publishing the data that the applications require.

  • Active Directory is now protected and safe because inefficient or rogue queries are either blocked or transformed in real-time into more efficient queries.

  • VIS provides a complete auditing solution for all applications accessing AD. All activity (modifications, searches) are captured.

  • All applications now have built-in failover. As backend systems fail, VIS provides the failover mechanisms automatically at the server layer.

  • All applications now have built-in connection pooling to AD, which increases performance and reliability significantly.

  • Application deployment time is reduced by over 50% by quickly providing real-time application specific views from multiple data stores.

  • VIS removes application deployment barriers by handling AD schema changes virtually and rapidly providing multi-forest views without any forest trusts.

  • VIS reduces the Kerberos token size limit problem by providing application specific groups at the VIS layer.

  • Active Directory and application performance is increased by mapping inefficient queries into more efficient queries, without code.

  • Leverages and extends the existing investment in the Microsoft platform.




No Active Directory should be left unprotected.

Secure your Active Directory today in 5 minutes! Watch for yourself here