Countdown to CITE Conf. & Expo, 6/2-6/4 in SF. Register Now
By IDG Enterprise

Centrify launches IT-friendly alternative to bring your own ID

by
Follow Me
December 07, 2012 11:49 AM
Credit: skpy via Flickr

One of the driving forces behind the emerging bring your own identity movement (commonly abbreviated as BYOI or BYOID) is the fact that many professionals today rely on a mix of technologies that includes on-premise enterprise and line of business apps, cloud services provided and managed by their employer, personal cloud services, mobile apps and the devices that run them, and traditional PCs running traditional productivity and business applications.

That means many users rely on several identities and their related login credentials to gain access to the resources and tools they need. Keeping track of those sprawling identities and credentials can be a complex and disjointed task, particularly when user naming conventions and password policies can vary widely. Centralizing around a single identity can make things significantly easier for employees and has the upside of improving security through the use of a single set of consistent policies for passwords and other account--related policies.

The BYOI concept, in which an identity and its related credentials are provided by a public service that users have already adopted in their personal life -- like Facebook, Twitter, or Google -- is one way to achieve that unified identity goal.

Google Has An Opportunity To Get Serious About Android Security
CITE Goes Live! Register for the CITE Conference & Expo, June 2-4, in San Francisco.

That approach has some drawbacks, however. It places identity management outside of the IT organization and infrastructure -- an approach that could make it hard to enforce or manage key identity features and policies like password requirements and account or device reset or unlock capabilities. As much as consumerization is causing a re-evaluation of the roles and requirements of IT and security within an organization, this may be a red line that organizations won't cross, particularly in regulated sectors like healthcare, finance, and government.

Earlier this week, Centrify unveiled an alternative option for achieving unified identity services that doesn't require organizations to cede authority.

That solution is a new product in the company's Direct Control lineup that is designed to extend enterprise identities beyond the corporate network to a range of public and private cloud services. Known as Direct Control for SaaS, it joins Centrify's Direct Control solutions for Macs, iOS and Android devices, various Unix and Linux distributions, and web apps and databases (including SAP).

Like Centrify's existing solutions, Direct Control for SaaS leverages the existing identities provided by an organization's Active Directory infrastructure without requiring administrators to extend or alter the Active Directory schema. In leveraging Active Directory, Centrify's solutions allow administrators to work directly with Active Directory management tools and group policies rather than forcing them to work in a separate console that syncs or pulls data from Active Directory. That approach, which sharply reduces the learning curve, install, and initial configuration time, streamlines identity/account management as well as the process of setting and enforcing policies. The result is a unified identity across internal and external resources that can be used for corporate-issued or personally-owned devices.

Latest Stories
May 24, 2013 10:27 AM

How an internal social network helped one agency fight terrorism

Flickr by UNC-CFC-USFK

The global law enforcement agency needed a secure, global network where crime and terrorist information could be shared among its members. It found an answer with the enterprise social network, tibbr.

May 24, 2013 9:54 AM

IT must act like a fast-moving startup

Dushan and Miae via Flickr

Brandon Porco, the chief technologist for defense contractor Northrop Grumman, says that IT will have to try lots of different things and move quickly to keep abreast of evolving employee needs. "Google has it very well-patterned: Launch and iterate."

May 24, 2013 8:41 AM

Enough with the silly myth about Apple hating the enterprise

ChrisDag via Flickr

Although Apple is often accused of not being an enterprise company, it's only in the last few years that Apple has abandoned its enterprise-oriented products. The real story may be that Apple's discovered that making enterprise-focused efforts simply don't deliver a huge return on investment.

May 23, 2013 4:54 PM

Windows 8 users are mostly sticking with the traditional desktop

Microsoft Sweden

Majority of Windows 8 PC owners launch less than one app a day

May 23, 2013 2:16 PM

Arduino Yún: A bridge between do-it-yourself and the Internet of Things

SJ Sharktank via Flickr

The open-source Arduino platform has helped tinkers make robots and controllers. At the Maker Faire last weekend, Arduino leader Massimo Banzi unveiled a new effort to help connect Arduino devices to the Internet.

May 23, 2013 12:58 PM

Here's how the new Kinect could make Windows better

Microsoft Research on Flickr via Flickr

Microsoft said its updated Kinect will be available for use with Windows some time next year.

FOLLOW US
Get CITEworld updates via email, RSS or social media