By Greg Keller Posted March 31, 2015
With SaaS applications exploding, a whole sector in the identity management market has been created. Single Sign-on (SSO) providers allow users to gain access to multiple, independent web-based software systems with a single sign-on.
By seamlessly connecting users to necessary SaaS-based applications, these Single Sign-on providers are aiding in one of the most critical aspects of modern businesses. IT benefits by gaining control over who has access to these SaaS-based solutions in one central location. Users get another benefit – the ease and efficiency to login with one common set of credentials.
Conventional Limitations of SSO
Unfortunately, web applications get all of the attention when it comes to single sign-on. SSO solutions don’t extend inward to the enterprise. Often that means they won’t apply to an organization’s devices (laptops, desktops, servers) and their internal applications.
The main reason for this is that SSO solutions focus on web applications standardized around the SAML language and protocol. SAML is the language that SaaS-based applications commonly use to enable third party control over their authentication and authorization. It’s a standard that has emerged over the last decade and is a leveraged by most major SaaS applications.
But devices don’t talk SAML – and most internal applications don’t either. Networks talk over Radius, LDAP, or Cisco’s proprietary protocols. So the challenge is how to centralize user credentials so that IT can easily administer everything while users can get single sign-on to all of the IT resources they need, internal and external. With a variety of different protocols, locations, and types of IT resources, a solution to cover it all is tough to find.
DaaS as an Single Sign-On Solution
Directory-as-a-Service® was created to address exactly that problem. With DaaS, an organization’s central directory is stored in the cloud so as to enable easy connection to a wide variety of IT solutions. This can include Infrastructure-as-a-Service, SSO solutions, both internal and external devices, internal applications, and network infrastructure.
The benefits of SSO for web applications can now extend to all applications, devices, and networks. IT admins centralize control over IT resources. Users have single sign-on to everything, not just web applications. We call it True Single Sign On™, and it’s the best SSO.
For a Directory-as-a-Service solution to make this work, it requires support for a wide variety of protocols. Beyond SAML, DaaS supports LDAP, RADIUS, SSH, and others. This enables applications, devices, and networks of all kinds to authenticate and authorize against the central user store.
Learn More about True SSO
If you are interested in having a central Directory-as-a-Service solution to SSO for internal devices and applications in addition to your web applications, talk to us. We’d be happy to talk to you about how modern organizations are centralizing control over their infrastructure while making it easy for their users. You can see a full list of our supported apps here or sign up for a free trial.