Scalability - Hitachi ID Password Manager
Hitachi ID Password Manager has been deployed in very large organizations, including:
- One password reset system supporting 750,000 users and another
supporting more than 2,000,000 users (both Extranet-facing).
- Internal corporate deployments with up to 350,000 users.
- Users distributed over six continents (nobody in Antarctica).
- A single Password Manager instance, running on a single server, managing
passwords on over 3,200 stand-alone Unix systems.
This level of scalability is a result of many features:
- Built-in, real-time database replication between servers
- Explicit support for multi-master, load-balanced configurations
with cooperation between replica servers.
- Multi-threading operation of the UI components, service components
In addition, Password Manager incorporates many features that, while not
directly performance-related, are needed to operate in large,
- Compatibility with reverse web proxies, which can expose some or
all of the Password Manager UI to less-trusted network segments (e.g., DMZ).
- An application proxy server, which allows Password Manager to connect to
target systems across firewalls.
- Support for multiple languages (including Unicode) per running instance.
- Auto-discovery of users and groups on integrated systems and applications.
- Included Connectors:
Systems on which Password Manager can manage passwords.
Integrations between Password Manager and other parts of an IT infrastructure.
- Supported User Interfaces:
Supported Password Manager user interfaces: web browser, workstation login prompt, mobile phone and telephone call.
- Helping Locked Out Users:
Enabling users who forgot their primary password or locked themselves out of their PC to access self-service.
- Helping Mobile Users:
Assisting mobile users who forgot their primary password (cached on their PC) while away from the corporate network.
- Network architecture:
How users, existing systems and applications and Password Manager servers interact on the network.
How Password Manager can scale to manage passwords across millions of login IDs.
- Mapping User IDs:
How Password Manager maps user IDs on different systems back to their human users, both automatically and with human assistance.
- Language Support:
Languages supported by the Password Manager user interface.
- Single Sign-on Without a Password Wallet:
Hitachi ID Login Manager can automatically sign users into their applications without having to store IDs and passwords in a "password wallet."
- Password Manager server requirements:
Sizing, configuration and number of servers on which to deploy Password Manager.