• Recent
  • Tags
  • Popular
  • Search
Skins
  • Light
  • Default
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Quartz
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Slate
  • Solar
  • Superhero
  • Vapor
Collapse

Three areas of focus for IDaas?

Scheduled Pinned Locked Moved Security
4 Posts 3 Posters 237 Views
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • D Offline
    D Offline
    Doug Campbell
    wrote on last edited by
    #1

    In the Federated Identity with a Third-party Service video in Domain 5 of the CISSP series, Adam describes 3 areas of focus for IDaas. This confuses me because when I think of IDaas, I think "cloud-based" yet one of the areas of focus listed is "on-premise". Is this really correct or is there some nuance I am missing?

    Thanks!

    1 Reply Last reply
  • R Offline
    R Offline
    Robin Abernathy
    wrote on last edited by
    #2

    Hi, Doug! Thanks for submitting your question.

    Yes, indeed IDaaS usually includes an on-premise solution. Think of it this way: Having an on-premise IAM solution (even if it is paired with an IDaaS partner) is the best solution if you are concerned with losing your Internet connection. Nothing is worse than your Internet access going down (for whatever reason) and your users being unable to authenticate because the IDaaS solution cannot be accessed. Now, a true IDaaS solution is a cloud-based solution. But having an on-premise service just provides that redundancy and fault tolerance that we security professionals love.

    An on-premises solution alone is not IDaaS. To have an on-premises solution that is part of IDaaS, an organization MUST have an IDaaS cloud provider and integrate their on-premises solution with the cloud provider's deployment.

    I hope this helps to clarify.

    Happy studying!
    ~Robin

    1 Reply Last reply
  • D Offline
    D Offline
    Doug Campbell
    wrote on last edited by
    #3

    Hi Robin,

    Thanks for the explanation. I think I am getting a better idea of what is attempting to be communicated. Basically an IDaaS at its most basic is cloud-based. However it is advantageous to have an on-premise component for managing users and use directory synchronization to keep things in sync with the cloud directory. In addition, it is also possible to have the whole system be federated which in addition to the directory synchronization allows the on-premise component to handle login requests instead of those requests always having to go out to the cloud-based system or maybe it is just as you wrote this is a redundancy in case the cloud-based provider is temporarily not available.

    Am I understanding you correctly?

    Thanks!

    Doug

    1 Reply Last reply
  • Anthony Sequeira 0A Offline
    Anthony Sequeira 0A Offline
    Anthony Sequeira 0
    wrote on last edited by
    #4

    Yes - it sure seems like you have it Doug! When a technology is defined like IDaaS - there are general statements made about how it is implemented. Unfortunately, these statements are so general that they do not always reflect how a specific organization is implementing the technology.

    Time for an extreme example - you could have a company go completely cloud for their IT and now there would be NO on-prem identity services.

    Warmest regards,

    Anthony J. Sequeira, CCIE #15626
    Edutainer
    ACI Learning

    1 Reply Last reply

  • Login
  • Don't have an account? Register
  • Login or register to search.
  • First post
    Last post
0
  • Recent
  • Tags
  • Popular
  • Search
  • Login
  • Don't have an account? Register
  • Login or register to search.