Add Context to User Access Logging by Combining JumpCloud & JupiterOne

Written by Mike Ranellone on June 1, 2020

Share This Article

An organization’s data security depends largely on who has permission to access critical tools, and how that access is managed and verified. Today’s IT teams often leverage a patchwork of solutions for identity and access management across their environments, with separate tools to handle authentication and authorization for Mac® and Windows® systems, web apps, cloud infrastructure in AWS, and WiFi/VPNs. As the world’s first cloud directory service, JumpCloud consolidates access control for all of the above IT resources and more into a single secure web console, with zero on-premises hardware to purchase or maintain. 

Admins looking to augment JumpCloud’s Directory-as-a-Service® event logging and system telemetry reporting features can pair it with JupiterOne’s asset discovery and configuration monitoring platform. This combination can improve an organization’s security and compliance posture by providing deeper insights and context into data and asset modifications. JupiterOne lets security teams home in on who made a change and what was changed within a given IT resource, while also easily identifying the asset owner. The result is faster remediation of any attempted attacks, compromises, or other issues. 

Combining JupiterOne & JumpCloud for Greater Context

JupiterOne is a graph-based asset discovery and configuration monitoring security platform for cloud-based organizations. With JupiterOne, security teams can centralize vulnerability management and risk analysis by ingesting assets from their cloud environment, code repositories, vulnerability scanners, their JumpCloud directory, and more onto a single graph of their digital environment.

JupiterOne dashboard - data visualization

By combining JupiterOne’s relationship-based data model with user attribute and access data from JumpCloud Directory-as-a-Service, security teams can unify deep reporting and event logging capability across virtually all of the digital assets in their environment. JumpCloud centralizes access control and user provisioning/deprovisioning with a single user identity for systems, networks, web apps, servers, and cloud infrastructure, while JupiterOne provides broad monitoring and discovery capabilities to track changes within each resource. Together, the tools support a comprehensive approach to data security. 

For example, organizations leveraging JumpCloud and JupiterOne can quickly see who owns and who made the most recent change to an open source code repository with a known vulnerability. This speeds up remediation and limits an organization’s risk exposure in a scenario where security analysts would not normally have access to all of the accounts and details.

By leveraging the metadata ingested from these various accounts, companies are able to maintain a separation of duties between IT, Security, and DevOps while providing the visibility needed to quickly address issues.

Ready to learn more? Here’s how to feed JumpCloud data into JupiterOne using JupiterOne’s managed integration. 

Continue Learning with our Newsletter