BlackShield ID is a web services application that installs inside Internet Information Server (IIS) and leverages IAS, SQL and Microsoft Active Directory. It takes a bit of work to get the application installed and configured, but once loaded the web interface guides users through setup, licensing and connecting to the database.
The user interface was clean and easy to follow. We liked a lot of what we saw when we reviewed this product last year. Added features to this year's version include a challenge-response mode for SMS tokens; a new pre-auth rule to allow an LDAP password to be used with challenge response tokens; ICE (in case of emergency) licensing, which allows for a temporary increase in license capacity for a pre-defined amount of tokens over a certain period of time; improvements to self-enrollment process; and an option to send BlackShield SMS messages as Flash SMS.
The solution has support for a variety of hardware, software and zero footprint style tokens, as well as SMS- or OATH-compliant tokens.
There was great workflow automation supporting user self-enrollment. Reporting and logging capabilities were very good. Auditing capabilities and administrative modifications, such as policy threshold violations, were great.
Various support options are available. The documentation was very detailed and helped us through the installation and configuration. This is a very nice multifactor authentication solution. Setup took time, but was easy when following the documentation. Ongoing management was easy using the web-based administration interface.