IDaaS (Identity as a Service)

Identity as a Service is identity and access management provided as a cloud service

Identity as a Service is identity and access management provided as a cloud service. From a functional point of view, it covers
– Identity governance and management (with the repository/ directory of users and the ability to deploy (“provisioning”) accounts and authorizations in the information system (particularly in the company directory) ;
– Access management and the different forms of authentication (simple, multi-factor, federative, etc.) for single user authentication to applications, whether managed by the enterprise in its datacenter or by cloud service providers (“SaaS”).
Often, this type of solution is “hybrid”, with cloud services and software components “on premise” deployed in the customer’s datacenter, especially for the provisioning part. This type of solution allows to manage both users of the organization’s HR base (employees) and staff at customers or partners (service providers, suppliers, …) of the organization, in order to manage access to information system resources in the most refined and agile way possible. This type of solution is often used to implement “JIT provisioning” and “zero trust” (the policy of least privilege).