We were recently talking to a user that was describing some of their challenges around user management approach (often called identity management) and one issue for them stuck out particularly. This organization had a wide-ranging infrastructure with servers on-prem, in multiple data centers, and in the cloud on an experimental basis. One of the challenges that they were struggling with was how to ensure that when somebody left, they terminated all of their user access to the infrastructure. With so many different machines, types, and locations, they were never 100% sure that they disabled all of the user logins. They had written scripts and used DevOps config automation tools, but they were never sure that they captured all accounts.
This was okay for a while. However, as the organization grew and they became subject to regulatory issues with PCI standards, ad hoc solutions just weren’t enough. They wanted an automated, systematic userdel command, and it’s precisely why that piece of JumpCloud’s Directory-as-a-Service® functionality resonated with them. With JumpCloud’s tags, they could terminate a user’s access by just deleting their tags or deleting them from the system. Both methods work nearly instantaneously and disable access regardless of the number of servers or the locations. Ensuring access is terminated for old employees is a key part of PCI and other regulatory statutes.
Beyond Userdel For Servers
Beyond using userdel for servers, JumpCloud’s cloud directory service can also terminate user access on your user’s machines (desktops, laptops), applications, and networks. It’s a unified cloud directory that centrally manages all user access.
If you have questions about how JumpCloud® can help meet some of your requirements to automate user and device management and compliance activities, please don’t hesitate to reach out to us. It would be our pleasure to speak with you about any of our identity management solutions.