Interview: Slovenian Card Payment Processor about migrating from Microsoft CLM / FIM to Indeed CM
Slovenian card payment processor* as part of migration from Microsoft CLM / FIM (EOL) initiated the procedure of purchasing a Card Management System. After the implementation of the Indeed Certificate Manager we decided to ask them to share their experience and decision-making process.
We tend to have an organized environment and have previous experience with MS CMS FIM. Clever, efficient, and secure use of digital certificates is extremely important for our organization.
We want to provide good user experience to our customers and have simple and efficient certificate/card management. At the same time, we must follow quite strict PCI DSS requirements which include not using vendor-supplied defaults for system passwords and other security parameters, protecting stored cardholder data, restricting access to cardholder data by business need to know, identifying and authenticating access to system components, restricting physical access to cardholder data, and regularly monitoring and testing networks.
Ability to meet our needs, comply with regulations and seamlessly integrate the product in our environment. Moreover, we value such parameters as efficient tech support, user-friendliness, and intuitiveness of the solution.
Indeed Identity was introduced to us by our partner OSI.si. It was agreed that they could provide us local support based on our long-term good partnership. OSI.si has years of professional experience in implementation and advisory services in the field of information technology and we trust in their advice. However, it is still crucial for us to make sure that all the tasks could be addressed. So, in terms of the product itself, Indeed CM is a modern solution that covers all the tasks at hand with a sufficient level of quality. Another important aspect is that Indeed Identity is constantly enriching their products with the robust features that meet the requirements of the industry. Also, we were provided with all the information needed during the evaluation process both from our partner and vendor to make the final decision.
Final decision was made by the system engineer of the Slovenian card payment processor after resolving a problem with 3rd party certificates with the help of the Indeed Identity tech team.
Regular approach: POC, resolving initial issues followed by pilot implementation & resolving real life problems with additional requirements.
We have had some issues, but Indeed Identity technical support was excellent with resolving them on time. They were always there to back us up and provide full consultancy service.
We would advise ourselves to write better documentation on our side to make the process less time-consuming.
We have automated the lifecycle management of Yubikey 5 devices used in our organization, and for certificates that are used for authentication on local workstations and over RDP connections (issue, update, revocation, suspension). We have also implemented a scenario to deliver third-party signature certificates in PFX (P12) format to the devices already issued to the users.
Looking for another CMS which would address all the tasks needed or we would have to use scripts, in any case there would be much more work with the PKI user segment.
Importing 3rd party certificates, unlock/unblock smart to name it a few.
Indeed CM is running smoothly, it is intuitive, easy to deploy and quick to learn. Also we would like to mention that Indeed Identity is flexible regarding customer wishes and demands with good project/sales/tech support and of course, a lot of knowledge.
*The name of the client is not revealed due to the non-disclosure agreement.