By George Lattimore Posted July 27, 2018
As more IT admins look to shift their directory services to the cloud, many are coming across the leading solution, JumpCloud® Directory-as-a-Service®. As a part of preparing to move from an on-prem identity provider to Directory-as-a-Service, some IT admins are asking whether there is a realistic Directory-as-a-Service replacement.
Deconstructing a Directory-as-a-Service Replacement
In order to answer that question, we need to deconstruct what services the leading cloud identity provider offers to organizations. At a high level, a Directory-as-a-Service replacement will need to encompass the following capabilities:
Centralized User Management – centralized provisioning, deprovisioning, and modifications of user access to a wide variety of IT resources (systems, applications, files, and networks) is central to the cloud directory service. Furthermore, IT admins will need to find a Directory-as-a-Service alternative that does this across platforms, protocols, providers, and locations.
System Management – a core part of the modern identity management solution from the cloud is to be able to manage a fleet of Windows®, Mac®, and Linux® systems with GPO-like policies and ad hoc commands. IT admins need to be able to lock down and secure their systems regardless of platform and where they live.
Cloud LDAP – LDAP is one of the core authentication protocols used for authentication. It’s critical that any Directory-as-a-Service replacement has the ability to deliver deep cloud LDAP service including groups integration, attributes, Samba support, and much more.
Hosted RADIUS – locking down WiFi and connecting user access to core identities is critical for IT organizations. Directory-as-a-Service ensures that there is one identity that can be leveraged across virtually all IT resources including access to the WiFi network.
True Single Sign-On™ – single sign-on into web applications is a critical part of the identity management ecosystem. The challenge is to go beyond just on-prem and web applications to create unified access management across all types of IT resources.
Multi-Factor Authentication (MFA) – ensuring security of user identities is paramount in today’s IT landscape. Identity breaches are the number one cause for a compromise. The addition of system and application-based multi-factor authentication is a critical piece of any cloud directory service approach. Directory-as-a-Service delivers on this with MFA for Mac and Linux along with applications accessible via a centralized portal.
G Suite™ / O365™ Integration – seamlessly integrating and connecting to leading productivity platforms such as G Suite and Office 365 is critical. Even more so, any replacement must be able to leverage the credentials used for G Suite or O365 to access virtually any other IT resource, creating a unified identity across what users access.
These are just a handful of the capabilities that IT admins will need to find in any Directory-as-a-Service replacement. If you’re interested in hearing more about what would qualify as a JumpCloud Directory-as-a-Service replacement, send us a message, or give us a call. Ready to try out these capabilities for yourself? Sign up for free, and register your first 10 users at no charge.