Web based identity management solutions have caught the attention of IT admins all over the world. This is because the ability to manage user identities is critical, but has traditionally been delivered by on-prem identity providers (IdPs) like Microsoft® Active Directory® (AD) or OpenLDAP™. While these solutions have been great for on-prem IT networks and homogeneous system environments, the shift to the cloud has presented new challenges and legacy identity management solutions are no longer the best tools for the job.
For that reason, IT organizations are interested in a next generation web based identity management alternative called JumpCloud Directory-as-a-Service®. This cloud IdP offers a number of advantages for IT organizations, but first, we should discuss why traditional identity management solutions are no longer a viable option.
On-prem Identity Management
The story of modern identity management began with the advent of the Lightweight Directory Access Protocol (LDAP). This innovation was created by Tim Howes, our advisor, and his colleagues at the University of Michigan in 1993. Howes told us in an interview that LDAP was created as a means to secure decentralized IT environments.
What Howes didn’t know was that two fundamental identity management solutions would emerge from LDAP a few years later. The first was OpenLDAP, an open source implementation of the LDAP protocol. The other combined LDAP with the Kerberos protocol to create the most dominant directory service platform to date, otherwise known as Active Directory. Nevertheless, both solutions have served IT admins well for almost two decades and have LDAP to thank for their success.
However, the introduction of web applications and heterogeneous system environments (e.g., Windows, Mac, Linux) in the mid-2000’s presented new challenges. AD and OpenLDAP were both designed for on-prem IT networks and homogeneous system environments (primarily Windows®). Web applications lived in the cloud and, for all intents and purposes, macOS and Linux are not Windows. So it is no surprise that management with AD or OpenLDAP began to struggle as these new resources were introduced. The simple fact is that on-prem IdPs were not (Read more...)
*** This is a Security Bloggers Network syndicated blog from JumpCloud authored by Vince Lujan. Read the original post at: https://jumpcloud.com/blog/web-based-identity-management/