DISA is ready to roll out a single sign-on system
- By Dawn S. Onley
- Sep 11, 2003
This month, the Defense Information Systems Agency will begin deploying a commercial application on its Global Combat Support System that provides identity and account management, and enhanced security with a single sign-on.
DISA is upgrading its GCSS servers to Version 3.3 with the new tool, Secure Authentication Framework for the Enterprise, developed jointly by Northrop Grumman Corp.'s Information Technology sector and Waveset Technologies of Austin, Texas.
GCSS collects logistics data from various combat support information systems and feeds it to soldiers in battle, presenting that fused data into an integrated picture that allows military leaders to manage and monitor everything from personnel to equipment.
'What happened was, as GCSS came into the picture in the early stages, we had a requirement to provide an underlying security architecture,' said Lt. Col. Elliott Cruz, program manager of GCSS.
GCSS uses a Defense Department public-key infrastructure on the Secure IP Router network. 'As we were developing our Web app, a requirement to manage this became a difficult thing to solve. There were differences between different types of administrators, different types of users,' Cruz added.
DISA found the answer to the quandary in the merged software tool known as SAFE, which combines government software developed by DISA and Northrop Grumman with Waveset Lighthouse.
The new system includes a unified management console for Web and client-server applications across the enterprise, Web access management, automated provisioning, password management, identity profile management, support for Defense PKI, and audit and reporting capabilities, according to a company release.