With all of the changes that are impacting the modern office, IT admins can’t help but wonder if there is an identity and access management (IAM) solution they can use to replace Microsoft® Active Directory® (AD). An overcrowded IAM market and clever marketing have made it rather difficult to distinguish which IAM solution could replace AD. One question we have received is, “Can I replace AD with Ping Identity®?” We’ll answer that question in this blog, but first, let’s take a look at how Ping Identity compares to AD from a high level.
A Look at AD and Ping Identity
To compare Active Directory and Ping Identity is like comparing apples to oranges. On one hand, Active Directory is the leading on-prem directory service and core identity provider. On the other hand, Ping Identity was one of the first and most popular web application single sign-on (SSO) solutions. There is a big difference between the core identity provider for an organization and a web app SSO provider. Therefore, when looking at AD versus Ping Identity, it’s really more important to think about what you want to accomplish.
Connecting On-Prem with the Cloud
Some organizations need to hang on to their on-prem identity management infrastructure in order to meet certain compliance regulations, but they need to be able to connect to web-based applications. In this scenario, using Ping Identity in conjunction with Active Directory works well, and that is generally how most organizations leverage Ping Identity with Active Directory. The core identity is housed within Active Directory, which then integrates with Ping Identity. The identity is subsequently federated to web applications. For many large scale enterprises and government organizations, the approach of combining AD with Ping Identity has worked well.
Eliminating On-Prem in Favor of the Cloud
For cloud forward organizations, though, the chance to completely replace their on-prem identity management infrastructure is appealing. Not only can Active Directory be replaced, but there may also be no need for a separate web application SSO solution. For many modern organizations, a cloud identity management platform (Read more...)
*** This is a Security Bloggers Network syndicated blog from JumpCloud authored by Natalie Bluhm. Read the original post at: https://jumpcloud.com/blog/can-i-replace-ad-with-ping-identity/