Improve pki user experience
with self-service solutions

The solution based on Indeed CM controls the use of digital certificates and smart cards by the company’s employees and logs user’s activity

schedule demo
prew-product

Task

The Public Key Infrastructure (PKI) is not only about PKI administrators and operators, but also about ordinary users who own electronic signature keys.

One of the reasons to deploy PKI is to make the system more user-friendly and efficient for users. This means that the overall efficiency of your PKI system depends on the quality and level of services provided.

Sadly enough, even though the technology keeps evolving at a high pace with brand new products emerging all the time, not much has changed for digital certificates and PKI tokens over the last 10 years. Remote work has been rapidly growing in popularity, making it even more difficult to maintain proper operation of digital certificates. The main reason for this is the need to manually handle hardware tokens. But this is exactly what you want to avoid with remote work.

You may often need to perform a certain action (change PIN codes, reissue certificates, etc.) for multiple users at the same time, i.e. perform a batch task. The standard routine is to have all users visit their PKI operators, or have the operators visit all users one by one, which happens more often. Batch tasks can prove even more difficult for both users and operators if your employees work remotely or are currently away working off-site, on a business trip or sick leave. In this case, batch tasks may require a lot of time.

Certificates used outside the corporate perimeter may bring additional challenges, for example, when a PKI token is locked, damaged, or compromised. You may find yourself in a really tough spot if a PKI token should suddenly fail in an area that is extremely hard to reach. In this case, delivering a new token within a reasonable time is close to impossible while the user’s job tasks will keep piling up.

Your inability to timely solve the issues and tasks faced by your users in relation to PKI tokens and digital certificates may result in financial losses owing to reduced labor productivity. The optimal solution would be to use specialized self-service and monitoring services offered as modules within the PKI Management software.

These software suites can help you sharply reduce the unproductive time required for solving various issues related to ensuring proper operation of your PKI tokens and digital certificates.

Solution

If you want to boost labor productivity in your company and make sure that all job tasks that require the use of PKI tokens and digital certificates are effectively solved, your best choice is to use a comprehensive solution, Indeed Certificate Manager containing relevant modules.

Indeed Certificate Manager comes with a user self-service portal that offers the following functions to end users:

  • View the list of assigned PKI tokens and issued certificates
  • Issue additional PKI tokens
  • Unlock PKI tokens
  • Revoke, suspend and resume digital certificates
  • Revoke and wipe tokens
  • Change PIN codes
  • Reissue certificates

Even users who have no access to corporate resources can use the remote service portal from external networks. This service can help you address the following tasks:

  • Unlock a token
  • Report a token that has failed or has been compromised (the respective certificates will be revoked)
  • Suspend a PKI token and respective certificates

Additionally, there is a specialized module, Indeed CM Agent, designed to control local smart cards and tokens connected to workstations, and remotely perform assigned tasks (change administrator PIN-codes, reissue certificates, etc.). Agents run assigned batch tasks and report their progress.

Now, batch tasks no longer require users and operators to adjust their schedules, push back their tasks, visit the office, etc. The task initiated by a PKI operator will be completed once the user connects the token to their corporate workstation.

Indeed Certificate Manager also includes the following functions designed to make PKI operations more efficient:

  • A notification system reminds the end users to renew their certificates or change PIN codes in a timely manner.
  • The system supports virtual and network smart cards, which can be useful when a hardware token assigned to a remote employee fails. Thanks to this technology, you can use private keys without removable hardware tokens.

Indeed Certificate Manager allows you to set up relevant permissions on the self-service portal on individual user or user group levels.

Certificate operations available to users:

  • Issue and reissue
  • Suspend and revoke
  • View issued and traced certificates
  • Check certificate status

PKI token operations available to users:

  • Assign and issue
  • Revoke
  • Unlock
  • Content update
  • Reset and change PIN codes

User tools:

  • Self-service portal
  • Remote service portal
  • Agent for client workstations

Token types:

  • Removable hardware tokens
  • Microsoft Windows Registry
  • Trusted Platform Module (TPM)
  • Microsoft Windows Hello for Business
  • Indeed AirCard Enterprise

Removable hardware tokens:

  • ACOS (ACS)
  • HID Crescendo (HID)
  • ID-One Cosmo (Bit4id)
  • SCinterface (cryptovision GmbH)
  • TicTok V2, V3 (CRYPTAS it-Security GmbH)
  • eToken and IDPrime (Thales Group, the former SafeNet and Gemalto)
  • YubiKey (Yubico)
  • ePass (FEITIAN)

Get the budget estimation of your project

get questionnaire
prew-product-work

Industries

Learn how multiple industries enjoy benefits from implementing our products

Prev
Next

industry about us

quot-mark
avt-1
Andy Woo
Regional Director of Pacific Tech

At Pacific Tech, we are continuously evolving and bringing new solutions to our partners and customers in the region. We are delighted to be partnering with Indeed Identity. With Indeed Identity, we found a comprehensive access management solution which perfectly complements the growing population of Singapore work-from-home workers. As a leading cyber security solution provider, this strategic partnership is perfect for our two companies.

read more
quot-mark
avt-2
KC KuppingerCole Report
Executive view

Indeed Identity’s innovative approach towards designing its whole product portfolio as a highly modular open application platform allows the customers to pick and choose the modules as needed and grow in the future as their business needs expand. Even out of the box, Indeed Certificate Manager provides comprehensive yet convenient management capabilities for both administrators and end users.

read more
quot-mark
avt-3
Michael Bürger
Founder & Sales Partner at EU-HUB Network

Since approximately 5 years now I’m working with Indeed Identity quite successfully. First as my vendor client and next as a trusted innovative software partner. Now we are re-selling Indeed Identity software as a Distributor for the EU and beyond. Often I met Indeed Identities CEOs, CTO, Product Management, Partner Managers and System Engineers, on the the phone and even in person in London and Munich and always my feeling was that this is are smart people, an excellent organized company, straight forward thinking and | don’t have any doubt that together we will be very successful this decade in the 2020s on everything we target.

quot-mark
avt-4
Leo Querubin
Executive Director for Business Development of Pointwest Technologies Corporation

The products of Indeed Identity, like Indeed Access Manager, a software for strong and multi-factor authentication (MFA), can provide the structural changes that force everyone to follow necessary cybersecurity procedures. Customers get the best of both worlds — the world-class cybersecurity products of Indeed Identity and the experience and expertise of the local cybersecurity landscape of Pointwest.

read more
quot-mark
avt-4
Volkan Duman
Information Technologies General Manager at vMind

As a result of the long-term laboratory tests and studies that we conducted, we believe that Indeed Identity products should certainly be on the Turkish market. Thanks to our partnership with Indeed Identity, we sought to expand the access control and certificate management market, which is located in a narrow profile in the country, as well as add value by transferring technology to our country. When we compare Indeed Identity products with similar products, we can safely say that they contain much more different features and are more inclusive.

read more
quot-mark
avt-4
Marko Pust
Director of OSI.SI

We have a long partnership with Indeed Identity for more than 2 years already. I can confidently say that Indeed CM is one of the best and technologically enhanced products for managing digital certificates and smart cards on the EU market. This product has a number of unique features such as Client Agent and Indeed AirCard Enterprise network-attached smart card that are highly valued by our customers. One of the customers said that Indeed CM brought automation and visibility to their PKI life.

quot-mark
avt-4
Heng Lie
Director of Synnex Metrodata Indonesia

I believe that Indeed Access Manager is an excellent solution for many of our clients. It manages access to all information systems of the enterprise and protects companies from internal and external cyber threats. It is a flexible platform combining different authentication scenarios and methods.

quot-mark
avt-4
Sergey Yeliseyev
X–Infotech Owner, Business Development Director, Government eID solutions

Indeed Identity is the company of professionals in the field of information security. They provide top-level solutions for PKI management and access control to corporate resources. We recommend this company as a reliable partner.