DaaS is your Directory. Evolved.
Directory-as-a-Service connects employee identities to their systems, apps, and networks. True Single Sign-On™ enables one secure set of credentials to be used for authentication and authorization. The result is seamless access to all cloud-based and on-premise resources.
What does DaaS do?
At the core of JumpCloud’s Directory-as-a-Service® is the central store of your employees identities. These identities, and the group-based membership you assign them to, provide your users the secure access to the various applications, devices, networks, and storage resources when they need it where they need it. JumpCloud’s DaaS is highly scalable, always-on, and requires no installation or on-going management of server infrastructure the way traditional directories require, providing IT admins with secure, easy-to-use product with the widest array of standards-based protocols to ensure all your IT resources are covered.
Eliminate identity sprawl – easily import all your user accounts into one place without duplication or fuss. JumpCloud is your single source for user information, passwords, and systems users can access in your organization.
One centralized console. All operating systems. No VPN. JumpCloud’s system management enables admins to manage their fleets of Windows, Mac, and Linux workstations, laptops, and servers with point-and-click simplicity, regardless of their location. A simple to use, web-based console provides a single point of reference to see status of systems, and enables the tooling and services to appropriately secure, enable access, and manage your system endpoints with no need for complex networking or VPNs.
The new JumpCloud REST V2 API is completely RESTful and offers a rich set of functionality and standards you’d expect in a RESTful API Interface. The JumpCloud REST API allows you to interface with some of our core features; otherwise known as Directory Objects. Directory Objects include: Commands, Policies, Applications, Systems, Users, User Groups, System Groups, Radius Servers as well as other third-party Directories Services like, Office 365, LDAP, G-Suite and Active Directory. By understanding our Directory Object Model you can easily leverage a new feature of our API called the JumpCloud Graph. The Graph is a powerful aspect of our platform which will enable you to associate objects with each other, or establish membership for certain objects to become members of other objects.
Group-based management in JumpCloud’s Directory-as-a-Service provides administrators greater efficiencies and security controls when authorizing employee access the systems, networks, applications, and storage they need. Groups of Users and Groups of Systems simplifies employee onboarding when managing groups of any size to ensure they have the appropriate access to resources.
Application Single Sign-On
Your employees’ applications are accessed in many ways – through popular SaaS services logged on to with popular browsers or through thick-clients on workstations installed on-premise. Regardless, you need consistency in how your users authenticate to use their apps: through a single username and password. Directory-as-a-Service provides end-user authentication and authorization to access your company’s critical applications regardless of their location. With its support for industry-leading protocols SAML 2.0 and LDAP, DaaS will ensure your employees only need to use one set of credentials to access applications being managed by you locally, or the SaaS providers you trust.
G Suite Integration
G Suite identities, and its underlying OAuth protocol, has played a critical role for many organizations in establishing a unified set of credentials used to authenticate a variety of web-based services. Yet, the totality of resources the employee needs access to (e.g. systems, networks, legacy applications, and storage to name a few) preclude it from acting as the core directory. Some bind G Suite to on-premise Active Directory with middleware they are required to manage. Others with an idea of managing nothing on-prem, like a directory, are put in an awkward position. Unless they’re using JumpCloud’s cloud-based directory and seamless G Suite integration.
Cloud RADIUS Service
Locking down your WiFi network is a snap with JumpCloud’s Cloud RADIUS service. No longer do IT admins need to spin up their own RADIUS server, hook it up to their wireless infrastructure, and then go user by user to setup deeper network control. With JumpCloud’s RADIUS-as-a-Service, IT admins simply point their WiFi network to JumpCloud and enable users via the JumpCloud web console. JumpCloud steps up your WiFi security game, and you don’t have to do any of the heavy lifting.
Password and SSH Key Management
Your passwords, and credentials at large, are the lynchpin to your security architecture. Weak passwords along with utilizing less secure mechanisms to gain access to critical server infrastructure put you and your organizations at risk. JumpCloud’s password and server SSH key management establish the appropriate controls required to maintain a diligent posture to protect your assets.
IT admins know how painful it is to implement LDAP. Besides setting up and configuring LDAP, IT admins are tasked with its uptime and availability, and researching how to connect all of the employees’ devices, applications, storage and networks to it. That’s a lot of work. JumpCloud’s LDAP-as-a-Service gives IT organizations all of the benefits of LDAP (and more) without the heavy lifting and ongoing maintenance.
Event Logging API
JumpCloud’s Events API enables administrators to access and download data specific to events like changes to your JumpCloud account, additions, deletions, modifications to objects, or execution of operations under the control of JumpCloud. The primary use case for the Events API is to gain simple and efficient access to data logs that provide historical information. These data logs are then utilized for compliance and auditing needs, as well as for forensics and analysis of security problems.
Microsoft Office 365 Integration
Microsoft Office 365 is one of the fastest growing cloud applications in the corporate environment. However, while organizations are jumping on to Office 365, IT is not having as easy of a time. IT is struggling with maintaining control between their Active Directory identities, and those being leveraged in Office 365 and the separate directory underpinning it, Azure AD. Bringing on Azure AD Connect as yet another service to integrate, monitor, and manage to keep these user accounts in sync is seemingly a step in the wrong direction away from an ideal, all cloud, SaaS-delivered solution. JumpCloud’s Directory-as-a-Service® eliminates this overhead and establishes a modern cloud-based solution tightly integrated with Office 365 to manage and control user accounts along side all the other system, network, application, and storage resources your employees need access to.
Multi-Factor Authentication (MFA)
Identity theft is everybody’s problem. It is the #1 conduit to your network being compromised. Whether it is brute force login attacks or your user’s identity being compromised elsewhere on the Internet, your network is constantly at risk of a breach. The best way to solve for that is by adding a second factor for authentication. Along with something that the user knows (their password), ask for something that they have – a multifactor authentication token. JumpCloud’s Directory-as-a-Service® tightly integrates MFA into the platform and at the device level. With MFA enabled, your users will need to provide their MFA token at login – whether that is on our user portal or on their device.
JumpCloud can extend your Microsoft Active Directory® (AD) managed identities with our AD Bridge utility so users can authenticate with resources not directly supported by or connected to AD. Import and synchronize users and groups from AD with JumpCloud and gain control over their access to networks, applications, and systems, while leveraging AD credentials. JumpCloud’s AD Bridge allows AD to remain as your master authority of identity, yet will ensure all the resources your employees need, whether on-premise or cloud-based, can be authenticated with a single set of credentials.
Samba File Server and NAS Authentication
While the cloud has enabled sophisticated file storage and sharing capabilities for employees, many organizations still rely on critical, on-prem file servers and data storage appliances. JumpCloud’s LDAP-as-a-Service enables Samba file servers and commercial NAS appliances to authenticate against your master versions of employee identities, allowing secure access to data from Windows, Mac, or Linux clients.
Workday Directory Integration
Manual employee onboarding can be complicated, inefficient, and insecure. Simplify and safeguard the process by using JumpCloud’s directory service and Single Sign-on (SSO) integration with Workday. JumpCloud connects with Workday to enable seamless importation of Workday accounts, instantly transforming them into cloud-based employee identities. Give your new users a single set of credentials for secure, group-based access to the systems, applications, networks, and files they require~ to do their job – all on day one.
Whether you’re a managed service provider (MSP) or a company centralizing IT across its subsidiaries, JumpCloud’s Multi-Tenant Portal makes it easy to securely control and manage all the organizations you administer with JumpCloud’s Directory-as-a-Service®.