SafeNet eToken PRO 72K
Strengths: Full-feature support; has support for most token types.
Weaknesses: Management interface could be easier to use; only supports eToken types.
Verdict: Great solution; takes some work to configure and manage.
SummaryThe eToken PRO is SafeNet's smart card-based USB token. The solution uses a PKI infrastructure to generate and store users' personal credentials - such as private keys, passwords and digital certificates - inside the protected environment of the smart card chip. To authenticate, users must supply their personal eToken device and eToken password.
eToken PRO is fully manageable using eToken's TMS (token management system), SafeNet's authentication management platform. eToken TMS manages authentication operations by offering enrollment, provisioning, assignment, revocation and deployment, as well as full lifecycle management.
The installation required Microsoft .NET Framework 2.0, SQL Server and Java Runtime for MobilePASS support. The server side is supported only on a Microsoft platform. The client-side support is available for both Linux and Windows.
The TMS Token Management Server is the main component in the architecture. The server uses multiple websites once installed on the server. The first is the TMS Management Center used for token enrollment and lifecycle management. The next is the TMS Self Service Center, which is used by end-users for self-service management of their tokens. The final site is the TMS Remote Service, which is used as a rescue website by offsite users to manage lost tokens or forgotten passwords.
We also reviewed the latest eToken PRO "Anywhere" capability. This enables the token to operate on any Windows-based computer without requiring the installation of client software.
Pricing for the eToken PRO token plus PKI Client, plus one year of support per user is $40.08. The optional eToken TMS Management is an additional $23.76 per user.
The interface could have been a little easier to use. There was good self-service support for users who lose their tokens or forget their passwords, and self-enrollment for users of the Anywhere tokens based on challenge/response technology. Reporting and logging are very good and provide solid support for auditing purposes. Support includes hardware RMA and options for adding various levels of software support.