Identity, authorization & compliance management based on AD, AAD and your users
Hybrid identity management leverages existing directory services for speed and data protection, empowers users to manage themselves and others, and automatically accommodates corporate policies.
What is IAM Hybrid?
Hybrid IT landscapes with server-client and cloud infrastructure are the new normal today. IAM Hybrid refers to identity and authorization management (IAM) in an IT landscape where identities merge in both worlds. Customized on-premises solutions and scalable cloud apps pose challenges for companies because there is no guaranteed compatibility.
1. IT specialists take care of on-prem and cloud directories and deploy the IAM solution.
2. Users execute processes themselves and take over IAM data processing.
3. Integrate corporate policies in the background, enable security workflows and audits.
Native directories as the basis for IAM Hybrid
The leading directory services
With 95% market share, Microsoft’s Active Directory directory service is the heart of IAM processes today. However, this service is no longer the only one on the market. The rapidly growing number of users of Microsoft 365 is also changing the IT world. By the end of 2020, more than 115 million users were actively using M365 every day, six times more than the year before. Azure Active Directory (AAD), which is automatically included from a technological point of view, is thus becoming significant across the board.
Business cases and corporate policies
In 2021, a hybrid IAM must solve not only technical challenges, but above all content-related issues. What can be done when the mountains of data grow and the patience of users steadily decreases? How are IT employees supposed to complete a multitude of tasks with limited time and also take into account compliance requirements?
IDM-Portal as a solution for hybrid IAM
User and authorization management
With hybrid IAM, two technological worlds with different concepts that are not fully compatible come together.
If the company relies on on-premises Active Directory, the user lifecycle is under local control. In addition, the Microsoft Cloud takes care of the user data. Some authorizations for cloud services are addressed directly, others can be synchronized.
Roles, security and reporting
IAM has the task of preventing unauthorized access to resources, documents and applications. For this purpose, the technical concept of authorization groups is used in almost all solutions, whether cloud or on-premises. Along with user roles, it is crucial for content-based IAM security. The traceability and IAM reporting of who changed what and when is important for security audits.
- Utilization of existing hybrid IT infrastructure with AD and AAD
- PowerShell and templates give additional flexibility
- Employees manage requests for authorizations and data maintenance
- Information portal with data from on-premises and Microsoft 365
- User lifecycle management handled by department manager and HR
- Compliance-appropriate adaptation and traceability for audits