Cloud Identity Problems Solved By Federating Directories

  /     /     /  
Publicated : 22/11/2024   Category : security


Cloud Identity Problems Solved By Federating Directories


Amazon, Radiant Logic join competition to supply virtual directories that make enterprise identities available in the cloud.



Cloud computing has prompted some companies to turn to virtualized directory servers that sit atop enterprise directory resources and allow users to carry their on-premises identities into the cloud.
Radiant Logic wants to play in this space. The third-party company announced recently it can collect users enterprise identities and allow them to be used inside or outside corporate walls in cloud computing settings.
A company spokesmen said July 25 that Radiant Logic creates a virtual directory that securely links cloud-based apps with all enterprise identity sources, including multiple Active Directories. Radiant Logics virtual directory will deal with multiple forests--a grouping at the top of the Active Directory hierarchy, such as the name of an enterprise, with tree and domain sub-groupings underneath it.
Other third parties, including Quest Softwares Symlabs and Optimal IdMs Virtual Identity Server Federation Services, are also active in the virtual directory space.
Amazon Web Services likewise announced Thursday that it has expanded its
Identity and Access Management
service, introduced late last year, to federate enterprise directories into a virtual directory for use in EC2s infrastructure.
Getting identity management servers, such as Microsofts Active Directory, Lotus Notes directories, and Sun Microsystems LDAP-based Identity Manager, to work together in cloud computing is a problem. To do so, a directory set up for one reason is called upon to serve a broader purpose.
Microsoft recognized the problem early and has supplied the means to federate a users identity through a platform that coordinates on-premises Active Directories and its Windows Azure cloud. Active Directory Federation Services 2.0 works with Windows Azure Access Control Services to create a single sign-on identity for Azure users.
Moving across vendor directories and specific enterprise contexts, however, gets more complicated. Data management teams dont set up user access the same way that identity management teams do. In some data settings, context is important and determines whether a user with general permission has specific permission to view the data.
Radiant spokesmen said in the July 25 announcement that its RadiantOne Virtual Directory Server Plus (VDS+) captures context-sensitive information as well as identity information, then makes it usable to its RadiantOne Cloud Federation Service. Both products were announced at Gartners Catalyst Conference in San Diego.
Virtual Director Server Plus
uses wizard-driven configuration to create a virtual directory. Cloud Federation Service, in conjunction with VDS+, then becomes a user identity and security token provider to applications running in the cloud. It federates identities from Active Directories, Sun, and other LDAP directories, databases, and Web services.
Cloud Federation Service
(CFS) uses SAML 2.0, an OASIS standard that uses security tokens in exchanging authentication information about a user between security domains. CFS can also use
WS-Federation
, a specification that enables different security domains to interoperate and form a federated identity service.
Both are used by Radiant Logic to allow a user to sign on once to a service in the cloud, then have his credentials carried forward to additional applications and services without requiring follow up log-ins. CFS is priced starting at $10,000 per CPU. VDS+ is priced starting at $25,000 per CPU.
A service catalog is pivotal in moving IT from an unresponsive mass of corporate overhead to an agile business partner. In this report, we chart the new service-oriented IT landscape and provide a guide to the key components: service catalogs, cost and pricing models, and financial systems integration.
Read our report now
. (Free registration required.)

Last News

▸ IoT Devices on Average Have 25 Vulnerabilities ◂
Discovered: 23/12/2024
Category: security

▸ DHS-funded SWAMP scans code for bugs. ◂
Discovered: 23/12/2024
Category: security

▸ Debunking Machine Learning in Security. ◂
Discovered: 23/12/2024
Category: security


Cyber Security Categories
Google Dorks Database
Exploits Vulnerability
Exploit Shellcodes

CVE List
Tools/Apps
News/Aarticles

Phishing Database
Deepfake Detection
Trends/Statistics & Live Infos



Tags:
Cloud Identity Problems Solved By Federating Directories