Active Directory and Identity Management
Capito are continually approached by clients to deliver a comprehensive solution to protect and control access to sensitive information - emails and data - across their environments. Such clients see immediate value in an application which allows their administrators to assign policies, deploy software, and apply critical patches across an enterprise. Such an application must not only be flexible but scalable to cater for their evolving needs, be compatible with other industry business tools and play a strategic part in their ICT roadmap.
When faced with such requests one product is continually identified as the solution of choice from Capito, Microsoft’s Active Directory. This is the clear market leading directory service and is the product of choice for thousands of businesses upon which they have built their ICT infrastructure.
This product has now been enhanced to address the needs of other new emerging requirements such as sharing and access of sensitive data with supply chain or partner organisations, whilst still taking cognisience of security and control issues. This new variation is known as Active Directory Rights Management Service (AD RMS).
The controlled environment
AD RMS affords businesses the ability to enable compatible software productivity tools to safeguard sensitive information. At user level, it allows flexibility to control the use of any information shared or stored across their working domain, by defining exactly who can read, print, open, copy etc... documents and e-mails alike, and has the added security feature of placing an expiry date on such information, beyond which access and functionality is denied.
Extending the controlled environment
Following on from the internal controlling these features can also be applied beyond your enterprise. AD RMS allows for secure encryption to be applied to mail messages, thus restricting access to the recipient, hence, protecting against erroneously delivered mail or the sharing of sensitive data through this medium.
Also standard templates can be applied to generalise mail or data shared with recipients outwith your companies direct control. These policies can be enforced globally using standard Active Directory techniques.
Furthermore intranet documentation can be additionally protected to ensure that only certain groups or employees have access to content hosted and posted within your domain.
Flexibility prevails
AD RMS can also be used on server based applications, enabling the integration of information protection into solutions such as document & record mgmt, e-mail gateways, automated workflow and content inspection solutions