Solved

What are the poors and cons for a tool like empowerID ? is there any alternative

Posted on 2015-01-20
2
551 Views
Last Modified: 2016-04-22
Hello ,

For those of you who are working on identification,  is there an alternative to the tool : empowerID ?

what are the benefits on using empowerID, what are the best solutions and those that would better be avoid.

thanks in advance for all your inputs.

Toshi.
0
Comment
Question by:toshi_
2 Comments
 
LVL 61

Accepted Solution

by:
btan earned 500 total points
Comment Utility
probably the question to ask is also the objective for the identity access management (IAM) should be protecting which of your key asset and if uniform single identity for user matters and if it is allowed to be access the key asset from anywhere and anytime. Cloud IAM is already becoming a norm with resource "parked" into the AWS, MyCloud, Box.net, etc as well as collaborative business function using Office365 or Google suite...user wants to reach each w/o hassle of remember another new userid and too many complex password (multi factor is recommended of course) and also leading to "user friendly" single sign-on (SSO), on premise support...if the IAM suite this few case, it does stand a chance against other candidates.

Things to avoid is really how the IAM handles privileged accounts, provide timely audit trails of access and administrative function, vulnerability patching at systems, handling of breach credentials vs forgotten password use case...these can be killer in operation if there isn't a straight off approach - you cannot just depends on automated self help user help desk at times for norm user to follow up on required investigation for their accountability trails during the breach or their credential is compromised and used for something bad ...The caveat is the legal binding with IAM in the cloud for this identity as a Service ...you tends to retain as the identity provider and federate to IAM in the cloud to ensure consistency and trust chain is maintain with other service providers..readily able to produce compliance report for account reviews..

Having said all those above, the question is then  does EmpowerID fits into those 2 paras above. The latter is comprehensive itself having key features like Directory neutral federation (AD, LDAP, SQL, etc), Multifactor authentication (including Smartcard, OATH etc), ready list of out-of-box authentication providers (including AD, social credentials like Salesforce, Twitter etc. etc.), for s/w interface providing identity claims generation, transformation and issuing (leverage full power of C#, Web Services), equip with security for protecting sensitive data leveraging claims level encryption and also SSO for non-Microsoft applications with support for commonly used standard OAuth 2.0, SAML 2.0 ...maybe this comparison may not be the best since it comes from EmpowerID itself but do serves some purpose for kickstart any "debate"
 http://www.empowerid.com/compare

For its "bad" I will say it is cost and the learning curve to maintain it Enterprise wide with separate of duties and overdoing the granularity of roles - do not have single superuser but consider many admin based on need to and role basis with least privileges...Alternative wise, this has some good listing on the incumbent and upcoming (EmpowerID falls into the this) and also their respective "lackings"...Okta and Symantec O3 are strong contenders
 http://security-musings.blogspot.sg/2013/04/comparing-cloud-enterprise-sso.html

I would say IAM should have some support and mentioned for mobile device management aspect too..but not widely make aware by these IAM ..
0
 

Expert Comment

by:DanielleITCentralStation
Comment Utility
You might find real user reviews for EmpowerID on IT Central Station to be helpful with answering your questions. This user writes that he cannot add users to more than one group at a time, but "it allows for self-service which means quicker turnaround for end-user support." You can read the rest of his review here: https://goo.gl/wsPXtN.

As for alternatives, members of the IT Central Station compare EmpowerID most often to Oracle Identity Manager. You can take a look at this direct comparison between these two solutions from the IT Central Station user community here: https://goo.gl/pph5uW.
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

Microservice architecture adoption brings many advantages, but can add intricacy. Selecting the right orchestration tool is most important for business specific needs.
Nothing in an HTTP request can be trusted, including HTTP headers and form data.  A form token is a tool that can be used to guard against request forgeries (CSRF).  This article shows an improved approach to form tokens, making it more difficult to…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

728 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now