CONTACT US
By Jageesh KV On 24 Aug 2017
We have heard about the phrase “a case of mistaken identity” which actually implies a person was mistakenly identified as someone else and was given authority to do some important information. In context of IT environment, a case of mistaken identity can be fatal and might lead to losing billions and reputation of a company. With the new trend of migrating your environment to cloud, identity management has become crucial. The need of the hour is to if not fully, partially automate the processes to keep the company IPs secured.
System for Cross-domain Identity Management (SCIM) is an open standard that allows for the automation of user provisioning and de provisioning. SCIM is becoming critical component addressing identity management on the cloud. This can make user provisioning in cloud based applications easier and cheaper. SCIM is based on REST and JSON protocols. SCIM supports CRUD (Create, Read, Update and Delete) which are core requirement of Identity Management.
Providing access to SaaS applications is not easy due to numerous SaaS applications. Traditionally, IAM manages user life cycle using connector that resides in IAM and connect to any systems or applications. It is impossible to have IAM connector for each SaaS application for user provisioning. Additionally, its expensive developing or buying a connector for every application that your enterprise wants to use.
Though the problem is becoming prevalent the solution is a simple one. The solution is a consistent way to provision and de-provision identities in different systems or applications. Eventually costs of integrating new applications with IAM will go down drastically and can be achieved using open standard SCIM. SCIM can reduce complexity of user provisioning and de-provisioning in SaaS applications and eliminating need of different connector for different applications.
Identity and access management as a service (IDaaS) has been gaining a lot of interest for last few years. As per Gartner, by 2020, 40% of identity and access management (IAM) purchases will use the identity and access management as a service (IDaaS) delivery model. All market leading IDaaS vendors has rich capabilities on user authentication, single sign-on (SSO) and authorization enforcement. Wide adoption of Open standards like SAML, OpenID Connect for authentication and OAUTH for authorization helps IDAAS vendors to integrate with thousands of SaaS applications for authentication, authorization and single sign on. IDAAS vendors have numerous connectors for single sign on, but in case of user provisioning and de-provisioning, it’s still lags far behind. One of the reason for this is non availability of open standard for user provisioning and de-provisioning. Wide adoption of SCIM can address this challenge. It is clear that SCIM will play major role in IAM and IDAAS space.
The implementation of SCIM bring the following benefits:
As a security team member, you will agree that SCIM is the only standard for provisioning currently. The other standard used for provisioning earlier was SPML (Service Provisioning Markup Language), but due to complexity of SPML, adoption was very less, which makes SCIM the only and preferred standard available for user provisioning. Enterprises are looking for simple and standardized way of managing identities in SaaS applications. This growing need enforce SaaS vendors and IAM vendors to make use of SCIM. Major IAM, IDAAS and SaaS vendors support SCIM standard. Though SCIM had a slow early adoption, but with big implementations and support from large IAM vendors SCIM adoption is growing by leaps and bounds.
No related posts.
Jageesh is a former Happiest Mind and this content was created and published during his tenure.
Jageesh KV Jageesh is a former Happiest Mind and this content was created and published during his tenure.
Read other blogs by Jageesh KV
These blogs might interest you
by Shivadya Prasad on 29 Sep 2023
by Tarun Vijay Bonthu on 21 Sep 2023
by Namrata Biradar on 8 Aug 2023
by Amit Kumar on 31 Jul 2023
Tag Cloud
Subscribe for blog updates
Technology Focus
News & Events
RESOURCE CENTER
ABOUT HAPPIEST MINDS
Happiest Minds enables Digital Transformation for enterprises and technology providers by delivering seamless customer experience, business efficiency and actionable insights through an integrated set of disruptive technologies: big data analytics, internet of things, mobility, cloud, security, unified communications, etc...
© Happiest Minds 2023 Terms and Conditions Privacy Policy