Entrust Identity as a Service™ Technical Integration Guides
Click here to see this page in full context

Report errors or omissions

  1. Home >
  2. Legacy Entrust IdentityGuard Integration Guides >
  3. Integrate Entrust IdentityGuard Desktop for Microsoft Windows

Integrate Entrust IdentityGuard Desktop for Microsoft Windows

Entrust IdentityGuard Desktop for Microsoft Windows filters logging for Windows clients. You can configure Entrust IdentityGuard Desktop for Windows so that Identity as a Service manages authentication to the application. For the new Identity as a Service Desktop for Windows that includes support for offline token authentication, see Integrate IDaaS Desktop.

Supported authentication methodsSupported authentication methods

Entrust soft token push

Software and hardware token

Voice/SMS/Email OTP

Knowledge-based authenticator (for offline KBA)

grid

Offline token

Temporary Access Code

 

To integrate Entrust IdentityGuard Desktop for Windows with Identity as a Service, you must do the following:

Determine whether you want to install to support offline knowledge-based authentication (KBA) and password-less authentication.

Open the applicable Entrust IdentityGuard Desktop for Windows documentation.

Entrust IdentityGuard Desktop 11.0 for Microsoft Windows

Entrust IdentityGuard 12.0 Desktop for Microsoft Windows

In Identity as a Service, do the following:

Create a gateway.

Configure the gateway.

Add a gateway instance.

Export the Gateway SSL certificate. You need to add this certificate when you install Entrust IdentityGuard Desktop for Windows using the custom installer.

Note: See the section Manage Gateways in the Administrator Help for instructions if you need to complete these steps.

Add Entrust IdentityGuard Desktop for Windows to Identity as a ServiceAdd Entrust IdentityGuard Desktop for Windows to Identity as a Service.

Add Entrust IdentityGuard Desktop for Windows to Identity as a Service

Click > Security > Applications. The Applications Lists page appears.

Click Add. The Select an Application Template page appears.

Do one of the following:

Select Identity as a Service Integrations from the search drop-down list and scroll to find the application you want to add to IDaaS.

- or -

In the Search bar, enter a search option to filter for the application you want to add to IDaaS.

Click IdentityGuard Desktop. The Add IdentityGuard Desktop page appears.

Optional: Modify the Application Name or Application Description.

Optional. Add a custom application logo.

Click next to Application Logo. The Upload Logo dialog box appears.

Click to select an image file to upload.

Browse to select your file and click Open. The Upload Logo dialog box reappears showing your selected image.

If required, resize your image.

Click OK.

Click Next. The Setup page appears.

Leave the Hosts and Port settings at the defaults.

From the Select IdentityGuard agent drop-down list, select the gateway instance containing the Entrust IdentityGuard agent.

Click Submit.

Add a resource rule.

Using the applicable Entrust IdentityGuard Desktop for Microsoft Windows Integration Guide, complete the following:

Install the Entrust IdentityGuard Desktop for Windows using the custom installer  (see the section, Customizing the Entrust IdentityGuard Desktop for Microsoft Windows installation package).

Note: If you want to install for offline KBA and password-less authentication, be sure to select the appropriate options during the installation. You can also add these post-installation by editing the registry settings (see the section, Registry Settings).

Modify and run Entrust IdentityGuard Desktop for Microsoft Windows setup files. (see the section, Applying your custom transform file during installation).

Install any applicable Entrust IdentityGuard for Microsoft Windows patches. You can find these by logging in to your Entrust Trusted Care account and follow the patch installation instructions.