Scribd
Upload
255 views4 pages

Cloud Computing Identity As A Service (IDaaS)

IDaaS offers identity management as a service, allowing users to access multiple systems with a single username and password. It solves problems of employees having to remember multiple credentials and makes it easier to disable accounts when employees leave. IDaaS provides directory services, single sign-on, and federated identity management using standards like SAML to package user credentials across different security domains.

Uploaded by

Kavya Mamilla
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
255 views4 pages

Cloud Computing Identity As A Service (IDaaS)

IDaaS offers identity management as a service, allowing users to access multiple systems with a single username and password. It solves problems of employees having to remember multiple credentials and makes it easier to disable accounts when employees leave. IDaaS provides directory services, single sign-on, and federated identity management using standards like SAML to package user credentials across different security domains.

Uploaded by

Kavya Mamilla
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd

Cloud Computing Identity

as a Service (IDaaS)

Cloud Learn To Google


Computing Develop Cloud
/ CompTIA For Cloud Certified
Cl d With A i t
100 42 Lectures 57 Lectures
Lectures 2.5 hours 4 hours
10.5 hours
 Niyazi 
 Total Erdogan TELCOMA
Seminars Global
More
More Detail More
Detail Detail

Employees in a company require to login to


system to perform various tasks. These
systems may be based on local server or cloud
based. Following are the problems that an
employee might face:

Remembering different username and


password combinations for accessing
multiple servers.
If an employee leaves the company, it is
required to ensure that each account of
that user is disabled. This increases
workload on IT staff.
To solve above problems, a new technique
emerged which is known as  Identity-as–a-
Service (IDaaS).

IDaaS offers management of identity


information as a digital entity. This identity can
be used during electronic transactions.

Identity
Identity  refers to set of attributes associated
with something to make it recognizable. All
objects may have same attributes, but their
identities cannot be the same. A unique identity
is assigned through unique identification
attribute.

There are several  identity services  that are


deployed to validate services such as validating
web sites, transactions, transaction
participants, client, etc. Identity-as-a-Service
may include the following:

Directory services
Federated services
Registration
Authentication services
Risk and event monitoring
Single sign-on services
Identity and profile management

Single Sign-On (SSO)


To solve the problem of using different
username and password combinations for
different servers, companies now employ Single
Sign-On software, which allows the user to login
only one time and manage the access to other
systems.

SSO has single authentication server, managing


multiple accesses to other systems, as shown
in the following diagram:

SSO Working
There are several implementations of SSO.
Here, we discuss the common ones:

Following steps explain the working of Single


Sign-On software:

User logs into the authentication server


using a username and password.

The authentication server returns the


user's ticket.

User sends the ticket to intranet server.

Intranet server sends the ticket to the


authentication server.

Authentication server sends the user's


security credentials for that server back to
the intranet server.

If an employee leaves the company, then


disabling the user account at the authentication
server prohibits the user's access to all the
systems.

Federated Identity Management


(FIDM)
FIDM describes the technologies and protocols
that enable a user to package security
credentials across security domains. It
uses  Security Markup Language (SAML)  to
package a user's security credentials as shown
in the following diagram:

OpenID
It offers users to login into multiple websites
with single account. Google, Yahoo!, Flickr,
MySpace, [Link] are some of the
companies that support OpenID.

Benefits
Increased site conversation rates
Access to greater user profile content
Fewer problems with lost passwords
Ease of content integration into social
networking sites

 Print Page

You might also like