The LDAP connector enables searching and reading identity information from an LDAP directory, such as Active Directory. User authentication with directory-stored password and group-based role assignment are also supported.
Alternatively, PRIME can connect to different HR systems, typically via CSV file import/export.
Through the PKI connectors, Nexus PRIME PKI applications can request, renew, and revoke certificates from/in a certificate authority (CA). The PKI connector delivers the certificate template names that are made available by the CA for use. These templates are mapped to Nexus PRIME certificate types. Multiple CA connections are possible.
Smart cards and software tokens can contain any number of certificates that may be issued by different CAs.
Physical access control systems (PACS)
Through PACS connectors, it is possible to read access profile information from the PACS as well as to provision and de-provision ID cards and entitlements (profile assignment) in PACS systems. The PACS connector may be based on CSV file (asynchronous) or WebServices (synchronous) interfaces.
PRIME DB Server
All configuration and run time data is stored in an SQL database.
PRIME Web server
Includes the PRIME components, that is, PRIME Explorer, PRIME Designer etc.
Identity assurance, data, image and signature capturing.
Card printing and encoding, batch production.
Support, invalidation, temporary PIN, card reset.
Request, approval, invalidation.
Request, image capturing, PIN reset, renewal, etc.