Microsoft® Active Directory® (AD) has been the default on-prem identity management platform in IT organizations for many years. Yet, with the rise of cloud technology, many IT admins have been forced to search for the best way to extend Active Directory identities to the cloud.
The good news is that a new generation of identity and access management (IAM) solution has emerged from JumpCloud that can extend AD identities to a comprehensive array of IT resources with one cloud-based solution. It’s called AD Bridge, but before we describe its characteristics, let’s step back and outline why IT organizations need a new IAM solution to extend AD identities to the cloud.
AD Identities and Windows-based IT Resources
The identity management sector has changed dramatically since the dawn of the new millenium.
It used to be that AD was the only identity management platform necessary to control an organization’s IT infrastructure. This was primarily due to the fact that Microsoft IT solutions made up the majority of IT networks at the time. For example, it was common for organizations to leverage Windows® systems for users, Office® for productivity, Exchange® for email, SCCM® (previously SMS) for Windows server management, Active Directory for authentication, and so on.
The homogeneous nature of IT networks at the time made identity management relatively straightforward. However, the introduction of web applications and the rise of Mac and Linux in the mid-2000’s presented new challenges.
AD Identities and Non-Windows IT Resources
The introduction of web applications and non-Windows resources meant that IT environments were no longer homogeneous or completely on-prem. The result was that Active Directory, which was designed to support on-prem networks of Microsoft IT solutions, was unable to provide management capabilities for these types of non-Windows and/or cloud resources.
Of course, the modern IT admin knows that AD add-ons like web application SSO solutions can supplement the capabilities that AD lacks. The trouble with this approach is that separate add-ons are typically required for each IT resource that is not supported by AD, which can be the majority of modern networks. Further, the add-on approach cannot (Read more...)
*** This is a Security Bloggers Network syndicated blog from JumpCloud authored by Vince Lujan. Read the original post at: https://jumpcloud.com/blog/extend-active-directory-identities-cloud/