By Greg Keller Posted February 11, 2015
Increasingly more IT admins are choosing to move away from or replace Microsoft Active Directory. Why? In short, because older-serving directories don’t meet the demands of modern businesses. Below, we look a bit more in detail about 5 reasons IT admins are choosing to replace AD and move towards modern Identity-as-a-Service platforms:
- They need better device and application support. – Microsoft AD is excellent at managing Windows users, systems, and applications. However, when you introduce a mixed device environment with Macs and Linux devices, AD struggles. AD has a hard time with a mixed operating system set of cloud servers hosted in one or more cloud providers, Web-based applications in the cloud, and technical IT applications. This provides new problems for IT admins in central user management, device management, and providing single sign-on capabilities.
- They have multiple directories, and are looking for a single source of truth. – Larger companies and those with significant technical resources end up having multiple directories. They leverage AD as their core identity provider for most of their users, but then also end up having to utilize LDAP to manage the more technical infrastructure. As more IT resources sit outside of the corporation, there are more “mini” directories required. More directories means more complexity, less security, and greater risk.
- They want to break Microsoft’s “lock.” – Many organizations aren’t sold on having a Microsoft-centric infrastructure. Apple’s OSX and iOS, Google’s Chrome and Android, and Linux are all competing with Windows to be a part of the IT landscape. Each OS has benefits that organizations are leveraging. In fact, most organizations today are about 1 Windows device out of 5 total devices—if you include all of the compute devices within an organization (desktops, laptops, tablets, and phones). AD only perpetuates the Microsoft monopoly when organizations are seeking different solutions.
- They have a hybrid business model of both on-premise and cloud based infrastructure. – Salesforce and Google are at the forefront of the Web applications trend, but increasingly more systems are proliferating the market. CRM, web-based email, and hordes of marketing technologies are now in the cloud. Unfortunately, directory services have historically been an on-premise solution, and don’t meet the demands of cloud based security issues. A cloud-based directory service can cut across the location boundaries.
- In the era of SaaS, they can’t justify the cost or time management of AD. – AD is expensive to implement and operate. It’s a old-school method for business infrastructure. The hardware, maintenance, and expert personnel to manage said hardware drive up costs. Organizations looking to reduce IT costs are looking at directory services as a potential cost and time saver.
As organizations review their AD implementations, they often discuss with us how Directory-as-a-Service™ could play a role for them.
Replace AD with DaaS
It is a cloud-based directory focused on connecting all of an organization’s users to the IT resources they need. These IT resources can include multiple device platforms, Web-based applications, cloud infrastructure, and more. This modern identity management platform can service as the True SSO solution for an organization.