EMS - Identity Management and Access

David Byrd : Raven Call
David Byrd
David Byrd is the Founder and Chief Creative Officer for Raven Guru Marketing. Previously, he was the CMO and EVP of Sales for CloudRoute. Prior to CloudRoute, He was CMO at ANPI, CMO & EVP of Sales at Broadvox, VP of channels and Alliances for Telcordia and Director of eBusiness development with i2 Technologies.He has also held executive positions with Planet Hollywood Online, Hewlett-Packard, Tandem Computers, Sprint and Ericsson.
| Raven Guru Marketing http://www.ravenguru.com/

EMS - Identity Management and Access

While it is always news when a larger corporation or retailer is hacked, there are many more untold stories of SMBs suffering from unwanted intrusions. According to the National Small Business Association, 44% of small businesses in 2013 were attacked. More recently, Travelers noted that 60% of all hacking target attacks struck SMBs. Moreover, the cost of such attacks has been estimated at $8,700 each for small businesses. Therefore, it has become important for SMBs as well as enterprises to strengthen their ability to prevent unauthorized access.

When employees accessed system using company equipment and company approved or built networks, managing authorized users and access to information was anything but simple. Implementing complicated systems caused users to develop high security risk work arounds to avoid system restrictions and constraints. Simplifying systems exposed businesses to a larger number of types of attacks. IT managers and developers have a very difficult and oft times unthankful job of protecting critical business information using inadequate or point solutions. With the increase in mobile workers comes the need to provide access to critical business systems over open networks and Bring Your Own Device (BYOD) adds yet another layer of complexity and uncertainty. Understanding who is accessing your business systems and managing their access to information is more difficult than ever and the risk of loss or manipulation of business information greater than ever.

CloudRoute and other Microsoft Cloud Solution Providers are delivering an integrated alternative to the point products attempting to address these dramatic growth of the mobile workforce, numbers of networks and variety of access devices.  The Enterprise Mobility Suite addresses identify management by providing:

  • Conditional access policies for enhanced single sign-on security
  • Mobile Device Management
  • Microsoft Identity Manager

Single sign-on security provides access to multiple applications (internal, cloud, and mobile) with a single user name and password. Access is then based upon the specific access policies applied to the user.  Typical Conditional Policies include:

Minimum password length

Minimum number of character sets

Password quality or strength

Minutes of inactivity before password is required

Password expiration (days)

Maximum OS version allowed (one for each platform)

Prevent reuse of previous passwords

Require a password when the device returns from an idle state

Require encryption on mobile device

Email account management

Minimum OS required (one for each platform)

Given the acceptance of BYOD, it is also important to have Mobile Device Management in place. Mobile Device Management supports iOS, Android, Windows and Windows Phone with the following capabilities:

  • Deployment of apps automatically during enrollment and allow users to install corporate apps from a self-service Company Portal
  • Restricted actions such as copy/cut/paste/save for corporate applications on corporate or BYOD equipment
  • Comprehensive settings management for mobile devices, including remote actions such as passcode reset, device lock, and data encryption
  • Secure removal of corporate data and applications when a device is unenrolled, noncompliant, lost, stolen, or retired from use

Microsoft Identity Manager binds Microsoft’s Identity Access Management solutions together by seamlessly bridging multiple on-premises authentication stores like Active Directory, LDAP, Oracle, and other applications with Azure Active Directory. This provides consistent experiences to on-premises applications and cloud solutions.

For more on EMS Identity Management and Access considerations and deployment, contact CloudRoute.



Feedback for EMS - Identity Management and Access

Leave a comment

Featured Events