The concept of True Single Sign-On™ for MSPs can be an incredibly powerful approach to securing identities for clients. Most MSPs are working with client organizations that are looking to outsource their IT management needs. That often means that their clients don’t have IT experts internally or their IT admins are stretched too thin. In either case, MSPs can create a game changing service for their clients by centralizing access to IT resources through one identity – a concept we call True Single Sign-On.
True Single Sign-On Origins
One could argue that the concept of True Single Sign-On traces its roots back to the days of Microsoft® Windows® based environments, Active Directory®, and the domain controller. Users could login to their Windows laptop or desktop and then immediately have access to any other Windows-based resources that were hosted on-prem. This access could include servers, applications, and the network itself. Through the magic of Microsoft’s domain controller, end users would log in once and then access whatever they needed. It was a seamless experience, and one that hasn’t really been replicated until True Single Sign-On with JumpCloud® Directory-as-a-Service® came along.
What is TRUE Single Sign-On?
As we know, things rarely stay the same in the world of IT. As the IT landscape shifted to include a wide range of IT resources both in the cloud and on-prem, the traditional concept of single sign-on (SSO) has largely remained focused on web applications. Those aren’t the only new web resources though, one of particular interest is infrastructure-as-a-service (IaaS) provided by AWS® and GCE, which often authorize and authenticate via SSH keys in addition to passwords. The result is that end users now have a larger number of accounts and passwords to manage, in addition to SSH keys, which increases security risk while decreasing IT control. This is a common challenge that MSPs have with their clients, and it results in extra overhead for them.
If you have to manage multiple identities, then we’re not sure how a solution can be called “single sign-on”. Now, a next (Read more...)
*** This is a Security Bloggers Network syndicated blog from Blog – JumpCloud authored by Ryan Squires. Read the original post at: https://jumpcloud.com/blog/true-single-sign-on-msps/