Can you have one identity to gain access to all of your IT resources? It certainly doesn’t feel that way in the vast sea of cloud infrastructure, web applications, on-prem resources, mobile devices, and so much more. The average employee needs access to wide variety of web based services on a daily basis. Yet, having to remember passwords for each individual account can make your head spin.
As a result, most people take shortcuts at the expense of security. A 2016 study by Pew Research Center found that an found that 86% of Americans prefer memorizing passwords compared to just 12% that utilize a secure password management solution. Additionally, 39% of Americans use the same or very similar passwords for many online accounts and 1 in 4 people admitted they often use passwords that are less secure because they are easier to remember.
It is this type of behaviour that allows attackers to thrive. At JumpCloud, our vision of True Single Sign-On is users leveraging one set of highly secure credentials to gain access to all of the resources they need.
Conventional Password Management
Historically, password management was handled centrally with Microsoft Active Directory®. In an age of Windows-centric networks and everything on-prem, this was a solvable problem. IT admins could enforce strong passwords, rotate them regularly, and ensure that there wasn’t reuse – all from one central location.
However, identity and access management (IAM) in the cloud era has become much more complicated. Cloud infrastructure and web applications each require their own, separate accounts – often ones that the IT organization are unable to manage, or worse, not even aware of. That introduces tremendous risk and leads to security breaches, not to mention it is extremely inefficient.
Cloud-based Password Management
Fortunately, a new solution for cloud-based password management called Directory-as-a-Service® is emerging to address the identity management problem. JumpCloud’s Directory-as-a-Service instantiates the idea of an authoritative cloud based identity provider. With JumpCloud, you can centralize your user accounts with a cloud hosted directory service in much the same way as traditional legacy applications like AD or LDAP. In fact, a lot of the core functionality of our platform is modeled off of traditional directory solutions and should feel very familiar. However, unlike AD or traditional LDAP, JumpCloud takes directory services a step further by moving one hundred percent of the infrastructure and management to the cloud. Our goal is to take the heavy lifting off of the IT admin’s shoulders, allowing them to focus on more important tasks.
Password management is a fundamental aspect of the functionality of our SaaS based directory. You can enforce characters and length, limit password reuse, rotate passwords, among other capabilities. You can also require MFA on user accounts to make them even stronger. The benefit of course is having centralized control over identity management to enforce strong password management and secure access to resources. All done safely and securely from the cloud.
If you would like to learn more about the cloud-based Password Management, drop us a note. We’d be happy to walk you through how cloud identity platforms such as Directory-as-a-Service are changing the game for modern IT organizations. If you are inclined, you can also check out our cloud directory for yourself. Your first 10 users are free forever.
Olmstead, Kenneth, and Aaron Smith. “Americans and Cybersecurity.” Pew Research Center: Internet, Science & Tech. Pew Research Center, 25 Jan. 2017. Web. 17 July 2017. <http://www.pewinternet.org/2017/01/26/americans-and-cybersecurity/>.