The last decade in the identity management world has created a shift to the cloud. In fact, solutions such as first generation Identity-as-a-Service (IDaaS) platforms (more commonly known as web application single sign-on) have changed the conversation to focus on cloud applications. That focus is now coming full circle as the conversation comes back to unified access management for on-prem applications.
How is unified access management changing the identity management world? What kinds of problems is unified access management for on-prem applications solving for IT organizations? To answer these questions, we need to look at the identity and access management (IAM) space as a whole, starting with the beginning.
Modern IAM, LDAP, and Active Directory
The start of modern identity management really kicked off with the advent of the open source authentication protocol, the Lightweight Directory Access Protocol (LDAP). This innovation enabled the creation of many other identity providers including OpenLDAP™ and Microsoft® Active Directory® (AD).
Of course, AD would go on to become the monopoly in the space because Windows® machines and applications were the standard, and the entire network was on-prem. This led to Active Directory basically introducing the first concept of unified access because a person’s Windows credentials would give them access to the network, their system, applications, and data.
This worked well for a number of years, but started to break down with the introduction of web applications. These IT resources were hosted in the cloud and weren’t necessarily Windows based. The result was that Active Directory struggled to connect to these off-prem, non-Windows IT resources.
Web App SSO Emerges to Help AD
As a result, a generation of IAM solution called web app single sign-on (SSO) stepped in to solve this problem. These identity-as-a-service platforms, as the analysts called them, would integrate with Active Directory and federate AD identities to a user’s web applications. This, too, worked well for a number of years. Active Directory managed everything on-prem, and the web application SSO platform handled web apps. Then, the on-prem network started to change and morph even more. Windows started (Read more...)
*** This is a Security Bloggers Network syndicated blog from Blog – JumpCloud authored by Natalie Bluhm. Read the original post at: https://jumpcloud.com/blog/unified-access-management-for-on-prem-applications/