SBN Directory-as-a-Service vs SSO

With the emergence of Directory-as-a-Service® (DaaS) as a new category on the Identity and Access Management scene, now often called cloud identity management, you may be wondering, how does a cloud-hosted directory service relate to Single Sign-On (SSO)?

Controlling Access to Web Apps

As one of the hottest categories in the IAM world, SSO is widely known and understood. Web applications emerged over the past decade and a half as critical parts of an IT organization. With Salesforce® leading the way, many on-premises applications have made the leap to better, more convenient web applications. The challenge for IT administrators was how to control user access to web applications.

With the on-prem identity provider locked into Microsoft® Active Directory®, the goal was to federate AD identities to cloud applications. Not an easy challenge at the time. With the use of the SAML protocol and sometimes password vaulting, IT admins were able to have their users log into a web console – or even from their browser – to access web applications without adding passwords. It was a huge innovation and has been why the web applications SSO category, often referred to as IDaaS, has taken off.

JumpCloud® Is Your Centralized User Management Platform

While the new entrant, Directory-as-a-Service, is lesser-known, it is blazing a big path. With much of an IT infrastructure moving to the cloud and mixed-platform environments, Active Directory is no longer the best solution for most IT organizations. In fact, many cloud-forward organizations (over 100k and counting) are making the leap to the cloud directory service. 

As a vendor-neutral identity provider, the modern cloud identity management platform handles Windows®, Mac®, and Linux systems®, G Suite™ and Microsoft 365™, AWS®, GCP™, or Azure®, and many others. LDAP, RADIUS, SAML, SCIM, SSH, and other protocols can be leveraged for the authentication path. The benefit is being able to integrate a wide variety of different IT resources into one centralized user management platform.

Directory-as-a-Service and True SSO

(Read more...)

*** This is a Security Bloggers Network syndicated blog from Blog – JumpCloud authored by Zach DeMeyer. Read the original post at:

Zach DeMeyer

Zach is a writer and researcher for JumpCloud with a degree in Mechanical Engineering from the Colorado School of Mines. He loves being on the cutting edge of new technology, and when he's not working, he enjoys all things outdoors, making music, and soccer.

zach-demeyer has 492 posts and counting.See all posts by zach-demeyer