Sphinx Enterprise software v4.1.9 stores logon data for Windows, websites and apps on a smart card. It can be used out-of-the-box with most major card and reader technologies, including contactless cards, contact cards, MAG stripe cards and PC/SC compatible desktop card readers and tokens.
The deployment of the server software required IIS 5 or greater and the ability to run ASP scripts. We loaded both the CardMaker and Logon Manager. We were impressed with the simple, out-of-the-box functionality and ease of use. The centralized management capabilities were impressive and included the ability to issue, re-issue, hotlist and revoke lost or stolen cards. Centralized logging and reporting functions were also available. Reporting was not substantial, but the things needed are provided. This includes event activity, such as logon, logoff and unlock events, active cards, entered cards, PIN letter templates, card inventory and hot-listed cards.
The smart cards could be used in many configurations, such as on card, server, laptop, standalone or via remote access. In server mode, the logon data is stored in encrypted form on the server. We were also able to pull in Active Directory data to populate and synchronize user credentials. The AD synchronization happens without any schema changes or without replacing the Windows authentication process. We had numerous options available for configuring how the smart cards would be used in the logon process, including configuring Windows authentication as a failsafe in the event the card was lost or stolen. We liked the website logon recorder, which provides users the ability to store credentials on their card by simply accessing the site.
Eight hours a day/five days a week phone and email support is included with the purchase. Additional support options are available for a fee. The documentation was very good. We did have to reference it several times during our testing.