Case Study: Social Security Administration achieves mandatory PIV smart‑card logons and streamlined access across systems with One Identity ESSO

ESSO Enforcing PIV card usage and increasing security

The Social Security Administration (SSA) needed to enforce mandatory PIV smart-card usage while making logons easier for employees and contractors across a heterogeneous environment—Active Directory, Java, WebSphere, Oracle, DB2, IBM 3270, terminal-based apps and other unique user stores. To meet this requirement SSA selected One Identity’s Enterprise Single Sign On (ESSO) to extend PIV/CAC-enabled authentication beyond Windows desktops to a wide range of applications.

One Identity implemented ESSO to enforce and extend Microsoft Windows PIV smart-card authentication to thick clients and legacy systems (including IBM 3270 and terminal applications), providing single sign-on from PIV/CAC-enabled desktops. The One Identity solution delivered national-scale coverage across all SSA components, protecting and simplifying access for about 90,000 employees and contractors and ensuring mandatory PIV use while streamlining access to critical systems.

Social Security Administration