The rivalry between Google Identity-as-a-Service (IDaaS) and AWS Directory Service is heating up. The success of AWS is driving Google to make Google Cloud even better, and visa versa. Both cloud infrastructure providers are trying to provide any number of additional, ancillary services that support their customers and both have been extremely successful.
Due to the fact that they are both so similar, it’s difficult to determine which of the two has the better overall cloud infrastructure platform in their current states – so it will be interesting to see what’s next. One of the areas that both have focused in on is cloud identity management. This blog post discusses various aspects of both AWS Directory Service vs Google IDaaS and why JumpCloud’s virtual identity provider may be more interesting in the cloud identity management arena.
Summary of AWS Directory Service
AWS is an Infrastructure-as-a-Service (IaaS) platform that offers a wide range of web services, applications, data storage, and infrastructure. Essentially, AWS provides low cost IT infrastructure on a pay as you go model aimed at minimizing capital expenses. Yet, while AWS is meant to be a cloud computing platform, they also offer Microsoft Active Directory® (AD) in the cloud. Why? The answer is that, while AWS is a cloud-based service, the source of truth for user identities is often still grounded on-prem with AD. So, AWS wanted to make it easy for organizations to connect their on-prem identities to their cloud infrastructure. A mirror or new instance of Active Directory in the cloud was their answer to this problem for Windows-based workloads.
Summary of Google IDaaS
If you have ever used Google Apps (now known as G Suite), then you are likely already familiar with Google Identity-as-a-Service. Google IDaaS is effectively a G Suite directory providing a user management system for Google services and an authentication source for a few select web applications. Google Identity Services allows for integrations with SaaS services and web applications via SAML and OAuth. However, things aren’t as clear when (Read more...)
*** This is a Security Bloggers Network syndicated blog from JumpCloud authored by Vince Lujan. Read the original post at: https://jumpcloud.com/blog/aws-directory-service-google-identity-service/