Microservices have become one of the hottest trends in the IT sector. The uptick in microservices in the world of IT makes sense based on the assortment of individual benefits that they can provide. Recently, however, IT organizations are taking a much broader view of microservices and applying them to their entire infrastructure, including the field of identity and access management. While it used to be considered something unthinkable, the concept of identity management as a microservice doesn’t seem far fetched anymore.
Microservices: A History
Historically, the concept of user identity authentication was delivered by core solutions within the infrastructure, called directory services. These solutions would authenticate users to the network, and then as they needed to access various IT resources, those IT resources would validate whether they could access the resource or not. This concept of identity management was delivered by solutions such as Microsoft® Active Directory® and OpenLDAP™. These solutions were located on-prem and were homogenous, either to a platform (Windows®) or a protocol (LDAP).
As the IT landscape has shifted to the cloud, the traditional approach to identity management, primarily with Active Directory, began breaking down. With Mac® and Linux® systems, AWS® cloud servers, G Suite™ and Office 365™, SaaS apps, WiFi, and more, Active Directory has struggled to connect users to these non-Windows IT resources.
That’s when microservices came in. The smorgasbord of cloud-based IT resource options that flooded the market were followed by web-application SSO solutions, which could operate in a lightweight, autonomous fashion to connect users to the new web resources. Development and operations teams began to work together, forming DevOps and using Agile to create other microservices with service-oriented architecture (SOA).
The Usefulness of Microservices
Generally, the concept of microservices means a solution that is easy to integrate within an IT infrastructure and other systems. IT admins can leverage microservices ideally through API calls or standard approaches. As more and more systems have moved towards being API driven, the concept of microservices doesn’t need to just be applied to on-prem functions, (Read more...)
*** This is a Security Bloggers Network syndicated blog from Blog – JumpCloud authored by Zach DeMeyer. Read the original post at: https://jumpcloud.com/blog/identity-management-as-a-microservice/