Centralized Identity and Access Management

centralized identity and access management

Centralized identity and access management (IAM) is highly sought after in modern IT organizations. However, achieving centralized IAM is easier said than done. This is primarily because most IT organizations are either locked in to the Microsoft® Active Directory® (AD) ecosystem, or are trying hard to avoid it.

AD doesn’t play nicely with non-Windows® or cloud innovations. As a result, IT admins have been forced to decentralize their identity management infrastructure with an array of siloed solutions (e.g. Web application single sign-on). The good news is that a next generation directory services platform has emerged that offers centralized identity and access management in the cloud.

It’s called JumpCloud® Directory-as-a-Service®. We’ll dive into the use cases of the JumpCloud platform later in this blog. First, though, we should discuss the development of IAM. In doing so, the advantages of centralized identity and access management in the cloud will be revealed.

The Development of IAM

evolution of directory services

The modern era of identity management began in 1993 with the introduction of the Lightweight Directory Access Protocol (LDAP). LDAP was developed at the University of Michigan to help secure decentralized IT. Tim Howes, now a JumpCloud advisor, was the lead developer of LDAP.

The LDAP innovation led to the creation of the two most popular on-prem IAM platforms to date. The first was OpenLDAP, the open source iteration of the protocol released in 1997. The other came from Microsoft two years later, which combined LDAP and the Kerberos protocol to provide user and system management capabilities for Windows® based IT resources. It’s called Active Directory.

AD is a particularly interesting solution because it effectively established the modern concept of IAM. There really wasn’t a solution that offered both user and system management capabilities in one solution, prior to its release. In other words, AD was the first to provide centralized identity and access management. Add to the fact that Windows-based IT resources were already dominating the IT market at the time AD was released, and it’s easy to imagine how Microsoft was able to establish AD (Read more...)

*** This is a Security Bloggers Network syndicated blog from JumpCloud authored by Vince Lujan. Read the original post at: https://jumpcloud.com/blog/centralized-identity-access-management/

Vince Lujan

Vince is a documentation and blog writer at JumpCloud, the world’s first cloud-based directory service. Vince recently graduated with a degree in professional and technical writing from the University of New Mexico, and enjoys researching new innovations in cloud architecture and infrastructure.

vince-lujan has 162 posts and counting.See all posts by vince-lujan