Citrix password manager secures single sign-on

Citrix password manager secures single sign-on

Summary: Citrix has launched a single sign-on application designed to take the headache out of password management

SHARE:
TOPICS: Security
1

Citrix launched a single sign-on software package on Thursday that automates the log-in process for enterprise applications. The MetaFrame Password Manager can be used as part of the Citrix MetaFrame Access Suite or as a standalone single sign-on product.

Citrix said that passwords are an expensive problem for large organisations. The company surveyed its customers and found that among firms with more than 5,000 employees, 41 percent of users used more than 21 separate passwords. According to reports from rival analyst firms Gartner, Giga and Forrester, password management costs between £15 and £120 per user per year.

Fraser Kyne, field product marketing manager at Citrix, told ZDNet UK that passwords are a headache for both users and administrators. "Between a quarter and a third of all helpdesk calls are related to passwords," he said. Trying to increase security by implementing complicated passwords often backfires: "Users forget them, write them down on a Post-It note which they pin to their monitor, and some even ask their colleagues to share passwords. This is not what the system administrator had in mind when implementing the policy," he said.

The Password Manager will provide access to Windows, Web-based and host-based legacy applications, said Kyne who explained that the software-only solution uses an agent on the client to recognise when the user is prompted for a password. The first time the system is used, users type their password into the agent, rather than the application. From that point, they will not be prompted by that application again, he said.

John Spencer, senior systems engineer at Citrix admitted that the system has some issues recognising Java-based prompts, but only the first time: "Because Java works within JVM it is a headache to get going because it doesn't understand exactly where the fields are -- it doesn't know the difference between a username and password field -- but it is configurable," he said.

According to Kyne, users will be less likely to share their primary network password, even if it is complicated: "They are only going to have one password now, but it needs to be secure. They just need to commit this one thing to memory and we will take care of everything else," he said, adding "this takes the hassle away from the users and gives control back to the administrators."

Topic: Security

Munir Kotadia

About Munir Kotadia

Munir first became involved with online publishing in 1998 when he joined ZDNet UK and later moved into print publishing as Chief Reporter for IT Week, part of ZDNet UK, a weekly trade newspaper targeted at Enterprise IT managers. He later moved back into online publishing as Senior News Reporter for ZDNet UK.

Munir was recognised as Australia's Best Technology Columnist at the 5th Annual Sun Microsystems IT Journalism Awards 2007. In the previous year he was named Best News Journalist at the Consensus IT Writers Awards.

He no longer uses his Commodore 64.

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

1 comment
Log in or register to join the discussion
  • How does this product compare to Novell's and Microsoft's Identity Management Systems?

    Is Citrix on the right track or are Microsoft and Novell etc. on the right track with their products.

    What companies have successfully implemented this product on a large scale 1,000 users+?

    What companies have failed?

    What are the pitfalls or trouble areas with using this product.
    anonymous