Solved

What are the poors and cons for a tool like empowerID ? is there any alternative

Posted on 2015-01-20
2
576 Views
Last Modified: 2016-04-22
Hello ,

For those of you who are working on identification,  is there an alternative to the tool : empowerID ?

what are the benefits on using empowerID, what are the best solutions and those that would better be avoid.

thanks in advance for all your inputs.

Toshi.
0
Comment
Question by:toshi_
2 Comments
 
LVL 62

Accepted Solution

by:
btan earned 500 total points
ID: 40561097
probably the question to ask is also the objective for the identity access management (IAM) should be protecting which of your key asset and if uniform single identity for user matters and if it is allowed to be access the key asset from anywhere and anytime. Cloud IAM is already becoming a norm with resource "parked" into the AWS, MyCloud, Box.net, etc as well as collaborative business function using Office365 or Google suite...user wants to reach each w/o hassle of remember another new userid and too many complex password (multi factor is recommended of course) and also leading to "user friendly" single sign-on (SSO), on premise support...if the IAM suite this few case, it does stand a chance against other candidates.

Things to avoid is really how the IAM handles privileged accounts, provide timely audit trails of access and administrative function, vulnerability patching at systems, handling of breach credentials vs forgotten password use case...these can be killer in operation if there isn't a straight off approach - you cannot just depends on automated self help user help desk at times for norm user to follow up on required investigation for their accountability trails during the breach or their credential is compromised and used for something bad ...The caveat is the legal binding with IAM in the cloud for this identity as a Service ...you tends to retain as the identity provider and federate to IAM in the cloud to ensure consistency and trust chain is maintain with other service providers..readily able to produce compliance report for account reviews..

Having said all those above, the question is then  does EmpowerID fits into those 2 paras above. The latter is comprehensive itself having key features like Directory neutral federation (AD, LDAP, SQL, etc), Multifactor authentication (including Smartcard, OATH etc), ready list of out-of-box authentication providers (including AD, social credentials like Salesforce, Twitter etc. etc.), for s/w interface providing identity claims generation, transformation and issuing (leverage full power of C#, Web Services), equip with security for protecting sensitive data leveraging claims level encryption and also SSO for non-Microsoft applications with support for commonly used standard OAuth 2.0, SAML 2.0 ...maybe this comparison may not be the best since it comes from EmpowerID itself but do serves some purpose for kickstart any "debate"
 http://www.empowerid.com/compare

For its "bad" I will say it is cost and the learning curve to maintain it Enterprise wide with separate of duties and overdoing the granularity of roles - do not have single superuser but consider many admin based on need to and role basis with least privileges...Alternative wise, this has some good listing on the incumbent and upcoming (EmpowerID falls into the this) and also their respective "lackings"...Okta and Symantec O3 are strong contenders
 http://security-musings.blogspot.sg/2013/04/comparing-cloud-enterprise-sso.html

I would say IAM should have some support and mentioned for mobile device management aspect too..but not widely make aware by these IAM ..
0
 

Expert Comment

by:DanielleITCentralStation
ID: 41561499
You might find real user reviews for EmpowerID on IT Central Station to be helpful with answering your questions. This user writes that he cannot add users to more than one group at a time, but "it allows for self-service which means quicker turnaround for end-user support." You can read the rest of his review here: https://goo.gl/wsPXtN.

As for alternatives, members of the IT Central Station compare EmpowerID most often to Oracle Identity Manager. You can take a look at this direct comparison between these two solutions from the IT Central Station user community here: https://goo.gl/pph5uW.
0

Featured Post

Enterprise Mobility and BYOD For Dummies

Like “For Dummies” books, you can read this in whatever order you choose and learn about mobility and BYOD; and how to put a competitive mobile infrastructure in place. Developed for SMBs and large enterprises alike, you will find helpful use cases, planning, and implementation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

The new Gmail Phishing Scam going around is surprising even the savviest of users with its sophisticated techniques. This attack comes as a nightmare trifecta for email filtering services; sent from a familiar contact, using authentic tone and verbi…
The new Gmail Phishing Scam going around is surprising even the savviest of users with its sophisticated techniques.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now