Content of Figures
- Figure 1 Identity Fabrics are a paradigm for a modern, holistic approach on IAM serving both traditional and cloud services, and integrating all required capabilities into a unified architecture (Source: KuppingerCole).
- Figure 2 Microsoft Azure AD supports secure hybrid access to a range of applications, from modern cloud apps to legacy custom applications running on premises. (Source: Microsoft).
Commissioned by Microsoft
Many if not most organizations today are following a “cloud first” strategy, with lifting & shifting existing applications to the cloud, and with preferring new application procurement and deployment in as-a-service models. While cloud services are easy to deploy and commonly come with modern user experience, this shift also introduces new challenges to both the users and to IT and security management.
One of these challenges is that, while shifting to the cloud, the reality of most businesses will remain hybrid for many years, if not forever. Even if data centers are closed and workloads are moved to managed service providers running what then is called a “private cloud”, it is still about running legacy IT in a closed-down, private environment, alongside all the new SaaS services deployed from the public, multi-tenant cloud.
From both the user experience and the IT perspective, this factually means that challenges double. Users must access applications both on premises and in the cloud, and IT must manage and protect applications in both worlds. Altogether with the shift to new work experiences such as “work from home”, there is a need for providing a consistent user experience and management of hybrid IT environments. Solutions must reflect the hybrid reality of businesses and their IT.
Within these challenges, providing seamless access and integration with the wide range of solutions running on premises is by far the biggest challenge. However, integration with major SaaS services must also be solved, including the specifics some of the major environments such as Salesforce, SAP S/4HANA, AWS, Workday or ServiceNow have. Providing single sign-on to modern SaaS services is the simple part of the journey to the cloud – the challenge is supporting all services, i.e. the full range of services within the hybrid IT reality of today’s businesses.
Microsoft Azure Active Directory is an obvious solution for many organizations when selecting their solution for authentication and single sign-on to services, and as a central element within their future Identity Fabric, a logical architecture for delivering a consistent set of Identity Services, across all types of applications and users. Most businesses have an Active Directory in place in their on premises infrastructure, and a very significant number of organizations has opted for Microsoft Office 365, which relies on Microsoft Azure Active Directory (Azure AD).
In sum, Microsoft comes with a comprehensive, leading-edge approach for providing access to all types of applications, such as SaaS apps, on premises apps, and custom-built applications, to users, based on Microsoft Azure AD. For organizations, this provides a strong offering for a migration away from on premises Active Directory to Azure AD as the future cornerstone of user authentication and access services, and their future Identity Fabric.
With the shift of IT to the cloud in consequence of “cloud first” strategies, it is time for businesses to reconsider their approach on IAM in general, and to shift to a modern, central cloud service. With the shift of businesses to the cloud, IT infrastructure and security services also must shift to the cloud, while further supporting the hybrid IT reality of businesses.
- The impact of “cloud first” strategies and a shift to SaaS on IT infrastructure services, specifically IAM and security
- The user challenge: Consis ...
3 The Need for Unified Application Access and Single Sign-On
The IT of most organizations will remain hybrid. However, with adding SaaS services, there is an emerging need for unified application access and sing ...Login Get full Access
4 The Hybrid Reality of Businesses: Supporting Legacy from the Cloud
Single sign-on to SaaS services is not sufficient – there are more challenges to solve, such as the integration with legacy IT applications, and fed ...Login Get full Access
5 Beyond Single Sign-On: Provisioning, Identity Management, Security
Adaptive Authentication, federated provisioning, and additional security services are required for comprehensive solutions. The Identity Fabric paradi ...
All this requires a strategic approach for modernizing IAM, well-beyond just providing a solution for single sign-on. KuppingerCole has described this ...Login Get full Access
6 Microsoft Azure Active Directory: Managing & Securing Access to all Apps
Microsoft Azure Active Directory delivers a range of integration options to virtually all types of applications, both SaaS services, legacy and on pre ...
Azure AD also provides direct, standards-based integration to a wide range of SaaS services, as well as forms- and password-based authentication to th ...Login Get full Access
7 Action Plan for Shifting to a General Cloud Service for Hybrid App Access
Providing seamless access for users to all services they need is part of a bigger strategy, based on a “cloud first” strategy, following the parad ...Login Get full Access
8 Related Research
Leadership Compass: Identity as a Service (IDaaS) IGA – 80051
Leadership Compass: Identity as a Service (IDaaS) AM - 79016
Advisory Note: Extending your Active Directory to the Cloud – 71108
Leadership Brief: 10 Top Trends in IAM – 80335
Leadership Brief: Identity Fabrics – Connecting Anyone to Every Service – 80204
Executive View: Microsoft Azure Active Directory – 79077
Executive View: Microsoft Azure Information Protection - 72540