The RFP Database
New business relationships start here

Server software/Middleware for Two-Factor Authentication for HSPD-12 CAC readers in Linux/Mac-based systems


Maryland, United States
Government : Homeland Security
RFP
Go to the link
This document has expired, therefore the above link may no longer work.

REQUEST FOR INFORMATION
SOURCE SOUGHT NOTICE

The Department of Commerce (DOC), National Oceanic and Atmospheric Administration (NOAA) Acquisition & Grants Office, Strategic Sourcing Acquisition Division, in support of the Office of the Chief Information Officer (OCIO), seeks potential vendors to provide server software licenses for use in two-factor authentication to support non-Windows servers including Linux, Solaris, and AIX, at a minimum, into a seamless Active Directory environment.


BACKGROUND: NOAA implemented two-factor authentication on Microsoft domains using the Common Access Card (CAC) in December 2012 to comply with Homeland Security Presidential Directive 12 (HSPD-12) and the national policy for two-factor authentication deployment (CAC/PIV) for logical access control on all systems as mandated by DOC and the Office of Management and Budget (OMB). NOAA users are required to leverage secure two-factor authentication using CAC capability and reliable technical support that creates a level of ease when conducting business within NOAA operating environments, and ultimately allow single-sign-on to existing NOAA systems using Windows, MAC, or Linux operating systems.


TECHNICAL SPECIFICATIONS: The software solution must be easy to implement and integrate with Microsoft two-factor authentication domains in NOAA. It must be scalable to provide no impacts, downtimes, or interruptions to existing mission systems. The solution must also meet the following Federal requirements at a minimum:


•    FIPS 140-2 Level 1 certified
•    Federal Section 508 compliant
•    Compatibility with DoD Alt Tokens
•    Joint Interoperability Test Command (JITC)-Approved Two-Factor (Smart Card) Authentication for Red Hat Linux
•    NIST SP 800-53 compliant, including sections AC (Access Control), AU (Audit and Accountability), CM (Configuration Management) and IA (Identification and Authentication)


The software solution technically must support two-factor authentication directly off box on NOAA servers including RHEL 4, 5 and 6; Solaris 9, 1; SUSE 9, 10 and 11; and AIX operating systems using federal and DoD standard credential cards such as PIV, PIV-I, CAC and Alt Token (for privileged users) without 3rd party or plug-in software.


This request for information does not constitute a commitment, implied or otherwise, that a procurement action will be issued. Nor does this request for information constitute a commitment, implied or otherwise that any procurement action that may be issued for the Government's requirements.


No entitlement to payment of direct or indirect costs or charges by the Government will arise as a result of the submission of contractor's information. The Government shall not be liable for or suffer any consequential damages for proprietary information not properly identified. Proprietary information will be safeguarded in accordance with the applicable Government regulations.


Interested parties are requested to submit their information to include:


1.    Your firm's capabilities, specifically whether your firm has the ability to provide the required product;


2.    Existing Government-wide Acquisition Contracts (GWAC) held (e.g. GSA, NASA SEWP, NITAAC CIO-CS) which these products fall under. Please provide the contract type and contract number;


3.    Your firm's DUNS number & CAGE code;


4.    Your firm's business size;


5.     Any socio-economic status;


6.    Standard commercial delivery terms;


7.    Is your firm the manufacturer or reseller;


8.    If your firm is the manufacturer, do you sell directly to the Government;


9.    NAICS codes which your firm or resellers operate under.


Information must be received by the Contract Specialist, Mr. Berchan Torrejon (Affiliate), at berchan.torrejon@noaa.gov by 2:00 p.m. eastern time on June 2, 2016. Do not call regarding this sources sought notice. Any questions or responses regarding this notice must be submitted in writing via e-mail to the above e-mail address.


Berchan Torrejon, Contracting Specialist, Phone 301-628-1356, Email Berchan.Torrejon@noaa.gov - Denise Harper, Contracting Officer, Phone 301-628-1383, Email denise.e.harper@noaa.gov

    1. Home
    2. Articles
    3. Login or Register

    4. Search

    5. Add/Announce your RFP