Where Microsoft servers are used, organizations can integrate their systems and applications with Microsoft Active Directory.
In organizations without Microsoft servers, open source tools that use LDAP (lightweight directory access protocol) are a preferred choice. Identity as a third party and Identity as a Service are best example of identity management tools.
Identity as a Service, or Identity and Access as a Service (IDaaS) is a cloud service that provides identity and access management. IDaaS provides SSO for the cloud and is useful when internal clients access cloud-based Software as a Service (SaaS) application.
Google has been implementing IDaas for many years. Users log into their Google account once, and it provides them access to multiple Google cloud-based applications without requiring users to log in again.
In the same way, Office 365 is other example of IDaas. When people use Office 365 at home, Microsoft provides IDaaS, allowing users to authenticate through the cloud to access their data on OneDrive.
Of course, thereis a number of facts about identity as a third party. For example:
- Third-party identity services typically support SAML, OpenID Connect, WSFederation, OAuth and WS-Trust.
- The need for an internal directory service does not go away.
- Most third-party identity services cannot be used for many authentication scenarios. Such as authenticate users to their commercial laptops.
- Many of the offerings are cloud-based with a minimal on-premises footprint.
Go CISSP’s Home