In the IDaaS space, many providers have done a great job at providing web application single sign-on.
In fact, that is largely how the category of ‘IDaaS’ started. Web application SSO vendors coined the term and began to use it. However, the IDaaS term has morphed into something that is very different from this first generation of solutions.
Today, IDaaS is really a full cloud identity management platform that is the core, authoritative source of truth for an organization. As part of that approach, the Identity-as-a-Service function device management is a critical part of modern IDaaS. And it is a component that most web application SSO providers are missing.
Origin of Device Management within Identity Management
The concept of including device management within identity management started with Microsoft Active Directory®. AD was introduced almost two decades ago as the central source of identity for an organization. Beyond providing authentication and authorization services for user identities to IT resources, Microsoft introduced the concept of Group Policy Objects (GPOs) to help execute commands, policies, and scripts on Windows devices. This concept stuck with IT admins, and it has become a key component of what is needed in a cloud identity management platform.
Unfortunately, this is far easier said than done. Most cloud identity management providers have focused on just web application single sign-on. There are, of course, focused device management providers, but they do not cover user management and directory services. Active Directory provides a great on-prem directory services solution for Windows-based networks and device management for only Windows-based systems. If your network has any macOS or Linux, you are out of luck. In addition, AD doesn’t work well with either of those systems for user management.
Multi-Task with a Modern Platform
For IDaaS device management capabilities, there is Directory-as-a-Service®. As a complete cloud directory service, it includes central user management, hosted LDAP, cloud RADIUS, True Single Sign-On™, multi-factor authentication, and device management. The benefit with this approach to cloud identity management is that it is cross-platform, provider agnostic, and location independent. As such, IT admins can manage devices that are Windows, macOS, and Linux from a central console. This is a significant advantage over Active Directory as well as the first generation of IDaaS solutions.
If you would like to learn more about the Identity-as-a-Service function device management, drop us a note. We’d be happy to walk you through why being able to manage Windows, macOS, and Linux devices all from your cloud directory service is powerful. Also, if you would like to check it out for yourself, sign up for a free account. Finally, please be aware that your first 10 JumpCloud® users are free forever.