In Blog, Cloud Infrastructure

What is a Cloud Directory?

As cloud adoption in IT continues to rise, vendors are introducing cloud directory offerings to the space. Some of these, however, aren’t exactly what you’d expect. This head scratching has led IT admins to wonder what is a cloud directory and how it is different from the on-prem identity provider (IdP). In truth, a cloud directory isn’t just a cloud-washed version of the on-prem directory service or a simple relational hierarchy of cloud identities, but rather a new generation of identity and access management (IAM) platform.

Directories Before the Cloud

Office before the Cloud

Historically, the directory, or identity provider, lived on-prem, and was most often delivered in the form of Microsoft® Active Directory®. With the IT network largely Windows®-based and on-prem, it made a great deal of sense that a Microsoft solution helped manage user access.

In short, the on-prem identity provider would connect users to their IT resources including systems, applications, files, and even the network itself. When everything was Windows, it was easy to see why Active Directory and the domain controller were so valuable. End users would simply login to their Windows laptop or desktop, and they had access to whatever they were entitled to within the on-prem network.

Rise of the Cloud

Cloud adoption for managed services

That identity and access management model started to break down as the IT network started to shift away from being on-prem and Windows-based. AWS® cloud servers started becoming popular, Mac® and Linux® machines infiltrated the network, and Exchange was replaced for G Suite™ and Office 365™. Active Directory, the on-prem directory service, started to struggle.

While it would be a straightforward conclusion to move the directory service up to the cloud with everything else, that was not the case for Active Directory and other directories. The identity provider remained cemented on-prem and unable to adapt to the changing IT landscape. Seeing this vacuum, vendors began releasing add-ons to the traditional identity provider that would help to span the gap between the ever-expanding cloud and on-prem, Windows environments. These include identity bridges, web-application single sign-on (SSO) tools, governance solutions, and more. While they helped to add the functionalities missing from AD and other directories, these add-ons couldn’t capture the full IAM picture.

As all of these changes occurred, a next generation identity management platform emerged to enable IT organizations to shift to the cloud and non-Windows resources effectively. Called the cloud directory, this cloud identity provider securely managed and connected users to their systems (Windows, Mac, Linux), web and on-prem applications via LDAP and SAML, cloud and on-prem servers (e.g. AWS, GCE™, Azure®), physical and virtual file servers (Samba, NAS appliances, Box™, G Drive, etc.), and wired and WiFi networks through RADIUS. This cloud directory is JumpCloud® Directory-as-a-Service®.

JumpCloud® Directory-as-a-Service®: The Cloud Directory

identity and access management Directory-as-a-Service

With JumpCloud Directory-as-a-Service, the identity provider is made directly available from the cloud. Directory-as-a-Service leverages the LDAP, RADIUS, and SAML protocols to link user identities to applications, both on-prem and in the cloud, as well as networks, file servers, and more, regardless of provider or location. As a third party cloud directory, JumpCloud also provides complete endpoint management for the three major platforms (Windows, Mac, Linux).

Learn more about the cloud directory, JumpCloud Directory-as-a-Service, by visiting our blog or YouTube channel, or by contacting us with questions. To see the cloud directory firsthand, you can schedule a demo or try the product out yourself completely free. A free JumpCloud account includes ten users forever, and requires no credit card.

Recommended Posts