What is Gateway?

Identity and Access Management in the Cloud
Based on industry-leading IBM Tivoli® Identity and Access Management (IAM) software, Lighthouse Gateway is a comprehensive, turnkey cloud-based IAM solution. Lighthouse Gateway offers you unique benefits, such as:

           •  Up to 60% TCO Savings
           •  Reduced Administration Overhead 
           •  No Upgrades and Patches to Manage 
           •  Robust SAS70 Type II Certified Infrastructure 
           •  Ease-of-Integration

 

Lighthouse Gateway overcomes the following security challenges facing your enterprise, while significantly reducing your infrastructure costs:

• Identity Management

  Identity Management – Lighthouse Gateway actively manages user and system identity data across disparate information technology resources according to corporate policy. Gateway’s Identity Management (IDM) services may integrate with existing IDM systems and synchronizes user identity and role information with existing user repositories, leveraging out-of-the-box support for 52 common repositories. Point-and-Click Workflow definitions enable advanced features such as approval processes, attribute mapping, and automatic schema discovery. The Lighthouse Gateway may also optionally serve as a company’s authoritative Identity Management system if there is not one currently in place.

• Access Management

  Access Management – Lighthouse Gateway manages application and system access across an enterprise in a consistent and comprehensive manner via corporate policies. The platform supports numerous out-of-the-box authentication mechanisms including User ID and Password, X.509 certificates, and token based two-factor mechanisms. Clients utilize a simple GUI-driven point-and-click web portal to define access control policies for their web applications. Policy is enforced within Lighthouse Gateway either passively (as users request access to the client’s applications) or as part of an integrated web application request via open standard authorization protocols.

• Federated IAM

  Federated Identity and Access Management – Lighthouse Gateway secures transactions between business partners and disparate security domains to enable Federated Single Sign-On (FSSO) and Federated Identity Management. The Gateway supports leading open federation protocols such as Security Assertion Markup Language (SAML) to provide federated authentication at both the user and machine transaction levels.

• Perimeter Security – Lighthouse Gateway prevents and detects external threats before they can penetrate the network perimeter defenses. Lighthouse Gateway offers a defense-in-depth protection against growing network-born threats. Multi-layer protection includes firewalls, intrusion detection and prevention services, sure-route access assurance, enhanced DNS protection, and Border Gateway Protocol (BGP) monitoring.

• Managed Compliance –Lighthouse Gateway delivers a path to industry regulatory compliance as a component of its infrastructure. The infrastructure services are audited by CISA certified auditors utilizing the COBIT framework to ensure compliance with industry regulations such as: Payment Card Industry (PCI), Sarbanes-Oxley (SOX), HIPAA, Privacy Act, and others.

• Integrated Self-Service – Web Access Management (WAM) solutions typically require their customers to build Self-Service applications (such as Self Registration and Password Reset) for their users. This effort traditionally entails custom development, which may be time-consuming and costly. Organizations are alleviated from this project with the Lighthouse Gateway. The Gateway’s WAM solution provides a point-and-click administration interface for the client to configure a Self-Service environment without a single line of code development. A client simply configures the applications through the Lighthouse Gateway Manager (a web-based portal), and the applications will skin, brand, and behave uniquely for that client.

• The Datacenter – The Lighthouse Datacenter meets the highest standards for compliance and security:
  
  High Availability
         •  Network Infrastructure – All redundant gigabit and fiber 
         •  Power – Two independent power grids 
         •  Connectivity – Three independent ISPs 
         •  Servers – Replication of all software services 
         •  Backed Up Daily

    Highest Standards of Security
           •  SAS 70 Type II Certified
           •  Tier 3 Datacenter conformance 
           •  Redundant Power, Cooling, and Connectivity 
           •  24x7x365 guard surveillance 
           •  Locked, Caged, and Monitored Environment 
           •  Biometric Facility Access 
           •  24x7x365 Network Operations Center 
           •  AES-128/256 encryption between all infrastructure end-points
           •  Man-Traps 
           •  US Department of Defense 100+ point server hardening implemented 
           •  24x7x365 Level 1 Help Desk

• Complete Turnkey Services – Customers considering adoption of cloud services

  Gateway Services

  want more than simply a hosted infrastructure – they want a full, turnkey solution. Lighthouse Gateway offers Identity and Access Management (IAM) as a service, not just infrastructure. A Level 1 Help Desk (U.S.-based, U.S. citizen-staffed) allows all clients and their end users to call anytime, year-round for trouble registering, resetting passwords, administering the system, or opening trouble tickets for any number of issues. Gateway also provides fully brandable and configurable, template-based, no-coding Self Service applications, such as Self Registration and Password Reset.
  

To explore Gateway's services and topology, click here.