About ActivID Appliance

The HID® ActivID® Appliance is a versatile, flexible and highly scalable authentication solution for securing access to government and corporate systems and online consumer services.

It secures a wide range of enterprise and commercial applications and is the ideal solution to meet compliance requirements and industry-standard guidance for strong, layered authentication and auditing (including the Payment Card Industry Data Security Standard (PCI-DSS) and the Federal Financial Institutions Examination Council (FFIEC)).

ActivID Appliance simplifies ongoing credential management through a single point of administration. It ensures segregation of data between different applications, making various information types extremely secure. It also provides centralized, tamper-evident auditing capabilities.

The overall solution supports multiple authentication methods which can be configured using highly flexible and customizable policies and be assigned to different user populations. With ActivID Appliance, it is possible to adjust the authentication policy used (for example, static or one-time passwords) − based on specific profiles and risk factors.

Supported Environment and System Requirements

ActivID Appliance Virtual Machine System Requirements

You can create the ActivID Appliance virtual machine using the following tools:

  • VMware® ESXi® 8.0 Update 2 and later
  • VMware vSphere® Client 8.0 Update 2 and later

The minimum system requirements for the VM are:

  • CPU – 4 CPUs (a minimum of 2 CPUs can be used)
  • 16 GB RAM allocated to the VM
  • Two virtual hard disks:
    • Hard disk 1 drive 0:0 should be 100 GB (OS)
    • Hard disk 2 drive 0:1 should be 100 GB (Oracle® database)
  • One bridged virtual network adapter.
Note: The VM is delivered with the recommended settings. However, you can modify them to match your available resources.

Cryptography

  • Entrust®:
    • nShield™ Connect 6000+
    • nShield netHSM
    • nShield XC
    • nCipher™ payShield module
  • Software cryptography

LDAP Directories

  • Microsoft® Active Directory® 2008 R2, 2012 R2 x64, and 2016
  • Novell® eDirectory 8.8 SP1
  • Oracle Directory Server (Enterprise Edition 11g Release 1)

Web Browsers

  • Microsoft Edge 40 and later
  • Google® Chrome® 60.x and later
  • Mozilla® Firefox® 55.x and later
  • Apple® Safari® 8 and 9 on MacOS®
Note:  
  • JavaScript™ and cookies must be enabled.
  • By default, the authentication server is configured to only accept TLS v1.2 connections. It is recommended that you use this setting for security reasons. This configuration can be changed if you need to support web browsers that do not support TLS v1.2.

HID Approve Application

Supported operating systems:

  • Apple iOS®
  • Google Android®
  • Microsoft Windows 10 and 11
Note:  
  • HID Approve for Windows does not support biometric authentication.
  • Fingerprint authentication is only supported on Android 6 and later.

Supported Migration

ActivID ActivID Appliance 8.7 supports the following migration paths (listed by version and cryptographic configuration).

  ActivID Appliance 8.7
  ActivID Appliance 8.6   VM with software cryptography (JCE) VM with external HSM
VM with software cryptography (JCE) X  
VM with external HSM   X
Hardware with software cryptography (JCE) X  
Hardware with external HSM   X
Note: You can only migrate back-end ActivID Appliances. Migration is not supported for front-end appliances.

For further information, see Migrating the ActivID Appliance.