P-Synch concentrates on password management and synchronization, rather than single sign-on in the accepted sense.
With password synchronization, the user typically has a single password for multiple applications. Updating it thus requires synchronising it across the applications. Typical single sign-on systems automatically maintain multiple passwords for a user.
P-Synch provides a very comprehensive password management infrastructure that is easy to understand and therefore, for most organizations, relatively easy to deploy. It is also logical from the user's perspective, providing effective self-service functionality in order to put them in control of common issues such as password refresh or reset for occasions when they have forgotten the password.
When a user changes their password, it is automatically synchronised across all applications it may legitimately access, the rules for which are maintained via an integral password policy engine with 50 or so built-in rules, as well as the capability to produce organization-specific custom rules.
Tokens are supported, including RSA Secure ID, as are biometrics, providing a comprehensive and flexible approach to access control. There is also support for a wide range of directories and messaging, server and mainframe infrastructures, as well as existing DBMS, although there is also an integral DBMS with simple xBase file formats to enable easy exchange of data for reporting purposes.
There is no specific client software required for P-Synch and, as the P-Synch server configuration can be quite flexible, ongoing scalability should be easily managed.
This is further enhanced by features such as automatic discovery of new IDs, and a user-oriented approach to password reconciliation. Help desk calls should therefore be minimal, although there is also an assisted password reset facility when users get into trouble.
P-Synch is an interesting and well conceived product which could bring many benefits to the medium- and larger-sized enterprise looking to effectively manage passwords and access control.
Scalability, ease of deployment.
Very little – in context of purpose.
A well-considered and executed password management product.