Improve company productivity with a Business Account.Sign Up

x
?
Solved

What are the poors and cons for a tool like empowerID ? is there any alternative

Posted on 2015-01-20
2
Medium Priority
?
779 Views
Last Modified: 2016-04-22
Hello ,

For those of you who are working on identification,  is there an alternative to the tool : empowerID ?

what are the benefits on using empowerID, what are the best solutions and those that would better be avoid.

thanks in advance for all your inputs.

Toshi.
0
Comment
Question by:toshi_
2 Comments
 
LVL 66

Accepted Solution

by:
btan earned 2000 total points
ID: 40561097
probably the question to ask is also the objective for the identity access management (IAM) should be protecting which of your key asset and if uniform single identity for user matters and if it is allowed to be access the key asset from anywhere and anytime. Cloud IAM is already becoming a norm with resource "parked" into the AWS, MyCloud, Box.net, etc as well as collaborative business function using Office365 or Google suite...user wants to reach each w/o hassle of remember another new userid and too many complex password (multi factor is recommended of course) and also leading to "user friendly" single sign-on (SSO), on premise support...if the IAM suite this few case, it does stand a chance against other candidates.

Things to avoid is really how the IAM handles privileged accounts, provide timely audit trails of access and administrative function, vulnerability patching at systems, handling of breach credentials vs forgotten password use case...these can be killer in operation if there isn't a straight off approach - you cannot just depends on automated self help user help desk at times for norm user to follow up on required investigation for their accountability trails during the breach or their credential is compromised and used for something bad ...The caveat is the legal binding with IAM in the cloud for this identity as a Service ...you tends to retain as the identity provider and federate to IAM in the cloud to ensure consistency and trust chain is maintain with other service providers..readily able to produce compliance report for account reviews..

Having said all those above, the question is then  does EmpowerID fits into those 2 paras above. The latter is comprehensive itself having key features like Directory neutral federation (AD, LDAP, SQL, etc), Multifactor authentication (including Smartcard, OATH etc), ready list of out-of-box authentication providers (including AD, social credentials like Salesforce, Twitter etc. etc.), for s/w interface providing identity claims generation, transformation and issuing (leverage full power of C#, Web Services), equip with security for protecting sensitive data leveraging claims level encryption and also SSO for non-Microsoft applications with support for commonly used standard OAuth 2.0, SAML 2.0 ...maybe this comparison may not be the best since it comes from EmpowerID itself but do serves some purpose for kickstart any "debate"
 http://www.empowerid.com/compare

For its "bad" I will say it is cost and the learning curve to maintain it Enterprise wide with separate of duties and overdoing the granularity of roles - do not have single superuser but consider many admin based on need to and role basis with least privileges...Alternative wise, this has some good listing on the incumbent and upcoming (EmpowerID falls into the this) and also their respective "lackings"...Okta and Symantec O3 are strong contenders
 http://security-musings.blogspot.sg/2013/04/comparing-cloud-enterprise-sso.html

I would say IAM should have some support and mentioned for mobile device management aspect too..but not widely make aware by these IAM ..
0
 

Expert Comment

by:DanielleITCentralStation
ID: 41561499
You might find real user reviews for EmpowerID on IT Central Station to be helpful with answering your questions. This user writes that he cannot add users to more than one group at a time, but "it allows for self-service which means quicker turnaround for end-user support." You can read the rest of his review here: https://goo.gl/wsPXtN.

As for alternatives, members of the IT Central Station compare EmpowerID most often to Oracle Identity Manager. You can take a look at this direct comparison between these two solutions from the IT Central Station user community here: https://goo.gl/pph5uW.
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

You do not need to be a security expert to make the RIGHT security. You just need some 3D guidance, to help lay out an action plan to secure your business operations. It does not happen overnight. You just need to start now and do the first thin…
Software-defined infrastructure is the buzz these days gaining a lot of importance. With software-defined infrastructure companies can be more agile and proficient. Nonetheless, a complete re-engineering of IT procedures is required to gain agility…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
This video Micro Tutorial shows how to password-protect PDF files with free software. Many software products can do this, such as Adobe Acrobat (but not Adobe Reader), Nuance PaperPort, and Nuance Power PDF, but they are not free products. This vide…

585 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question