[Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 756
  • Last Modified:

What are the poors and cons for a tool like empowerID ? is there any alternative

Hello ,

For those of you who are working on identification,  is there an alternative to the tool : empowerID ?

what are the benefits on using empowerID, what are the best solutions and those that would better be avoid.

thanks in advance for all your inputs.

Toshi.
0
toshi_
Asked:
toshi_
1 Solution
 
btanExec ConsultantCommented:
probably the question to ask is also the objective for the identity access management (IAM) should be protecting which of your key asset and if uniform single identity for user matters and if it is allowed to be access the key asset from anywhere and anytime. Cloud IAM is already becoming a norm with resource "parked" into the AWS, MyCloud, Box.net, etc as well as collaborative business function using Office365 or Google suite...user wants to reach each w/o hassle of remember another new userid and too many complex password (multi factor is recommended of course) and also leading to "user friendly" single sign-on (SSO), on premise support...if the IAM suite this few case, it does stand a chance against other candidates.

Things to avoid is really how the IAM handles privileged accounts, provide timely audit trails of access and administrative function, vulnerability patching at systems, handling of breach credentials vs forgotten password use case...these can be killer in operation if there isn't a straight off approach - you cannot just depends on automated self help user help desk at times for norm user to follow up on required investigation for their accountability trails during the breach or their credential is compromised and used for something bad ...The caveat is the legal binding with IAM in the cloud for this identity as a Service ...you tends to retain as the identity provider and federate to IAM in the cloud to ensure consistency and trust chain is maintain with other service providers..readily able to produce compliance report for account reviews..

Having said all those above, the question is then  does EmpowerID fits into those 2 paras above. The latter is comprehensive itself having key features like Directory neutral federation (AD, LDAP, SQL, etc), Multifactor authentication (including Smartcard, OATH etc), ready list of out-of-box authentication providers (including AD, social credentials like Salesforce, Twitter etc. etc.), for s/w interface providing identity claims generation, transformation and issuing (leverage full power of C#, Web Services), equip with security for protecting sensitive data leveraging claims level encryption and also SSO for non-Microsoft applications with support for commonly used standard OAuth 2.0, SAML 2.0 ...maybe this comparison may not be the best since it comes from EmpowerID itself but do serves some purpose for kickstart any "debate"
 http://www.empowerid.com/compare

For its "bad" I will say it is cost and the learning curve to maintain it Enterprise wide with separate of duties and overdoing the granularity of roles - do not have single superuser but consider many admin based on need to and role basis with least privileges...Alternative wise, this has some good listing on the incumbent and upcoming (EmpowerID falls into the this) and also their respective "lackings"...Okta and Symantec O3 are strong contenders
 http://security-musings.blogspot.sg/2013/04/comparing-cloud-enterprise-sso.html

I would say IAM should have some support and mentioned for mobile device management aspect too..but not widely make aware by these IAM ..
0
 
DanielleITCentralStationCommented:
You might find real user reviews for EmpowerID on IT Central Station to be helpful with answering your questions. This user writes that he cannot add users to more than one group at a time, but "it allows for self-service which means quicker turnaround for end-user support." You can read the rest of his review here: https://goo.gl/wsPXtN.

As for alternatives, members of the IT Central Station compare EmpowerID most often to Oracle Identity Manager. You can take a look at this direct comparison between these two solutions from the IT Central Station user community here: https://goo.gl/pph5uW.
0

Featured Post

2017 Webroot Threat Report

MSPs: Get the facts you need to protect your clients.
The 2017 Webroot Threat Report provides a uniquely insightful global view into the analysis and discoveries made by the Webroot® Threat Intelligence Platform to provide insights on key trends and risks as seen by our users.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now