Microsoft HSPD-12 solutions

Microsoft HSPD-12 solutions

Summary:

Many government organizations can meet the requirements of the Homeland Security Presidential Directive-12 (HSPD-12) by extending the capabilities of the Microsoft products they already license and deploy.

tabs_left_side_47x40

*
Next step

Contact a Microsoft representative

Partners

Showcase your solution

Related links

FIPS 201

Microsoft Windows Server 2003

Microsoft Public Key Infrastructure (PKI) for Windows Server 2003

Related scenarios

Find more solutions for government


Situation

If your agency is striving to meet the requirements of HSPD-12, leverage your current investment in Microsoft technologies – in other words, use what you already own.

The HSPD-12 directive requires federal organizations to issue a common identification card – usually called a smart card – to all federal employees and contractors. The smart card will integrate physical access control and logical access control and provide the employee access to everything from anywhere.

Many government agencies and departments are using both the Microsoft Windows Server environment and Microsoft Active Directory (AD) as the network operating system directory. This directory provides a data repository for users, computers, policies, and other objects used to provide a common secure authentication, access control, and centralized management infrastructure, based on open standards such as Kerberos and Lightweight Directory Access Protocol (LDAP). Due to its inherent ability to provide network authentication for clients and users connecting to the network, Active Directory forms the foundation for a logical access control solution for user authentication via a HSPD-12 Personal Identity Verification (PIV) smart card.

Solution

Microsoft can provide an HSPD-12 Federal Information Processing Standards (FIPS) 201 solution using the Microsoft Windows Server 2003 Certificate Services, Active Directory, Identity Integration Server, and other platform services and partner solutions for card management, PIV smart cards, and hardware peripherals.

The HSPD-12 PIV card infrastructure required for logical access control (LACS) and physical access control (PACS) can be brought together using these Microsoft technologies in a cost effective manner, allowing federal agencies and departments to leverage their existing knowledge in the operations and maintenance of Microsoft software and technologies. For example, your agency can

Leverage your existing FIPS 201-compliant smart cards for more than simple physical access

Extend the capabilities of your existing Microsoft Exchange Server mail solution

Build on top of your existing Active Directory deployment

Benefits

Microsoft solutions are scalable for agencies of any size—from hundreds to thousands of workstations and users in a single geographical area—and provides for LAC and PAC capability. For agencies with multiple locations, the solutions can be adapted to fit the agency's specific scenario.

In addition, these solutions can easily be integrated into your existing IT infrastructure:

No need to replace your current technology investments

Easier training requirements for IT staff responsible for deploying and managing the solution

Leverages your investment in PIV smart cards

Other benefits include:

Employees can access their e-mail and calendar from anywhere using a familiar interface

Mail servers are not connected directly to the Internet

No need to deploy a full Virtual Private Network (VPN) solution

No need to deploy additional software to the clients beyond the smart card hardware and drivers

The ability to work anywhere while complying with critical Office of Management and Budget (OMB) and Continuity of Operations (COOP) requirements.


Was this information useful?