In attribute-based access control, access to resources is based on the attributes of a user, not from the resource owner specifically granting access to that user. The user proves their claim based on attributes associated with them rather than having joined a group and/or a role. Example of ABAC (Attribute based Access Control) A great…
I see the term Active Directory management tools used everywhere from provisioning to SSO to reporting to auditing. I see it used for managing users, groups, GPOs, and everything in between. It seems to be a broad term meaning software that fills in the holes that Microsoft left in Active Directory. It also seems that “tools”…
In any organization, there are numerous users’ objects including employees, managers, and clients, in active directory and azure active directory, with certain attributes assigned to them within HR database. All these users need to have appropriate active directory permissions within organization’s identity and access management framework, to allowing employees access resources on the network, so they can do their jobs effectively. They cannot be held back by needing to request access each time…
When we developed our Active Directory history feature for GroupID we had a lot of uses in mind. The ability for administrators to get an easy view into Active Directory changes, a simple way for end users to see what they had done to their own groups and attributes, as well as a business friendly tool…
Most organizations manage their users’ access with Active Directory. Many organizations are moving business applications to the cloud. The most cloudy application so far seems to be email, dominated by Google and Microsoft. We have covered BPOS & Microsoft 365 (and Office 365) at length but have only cursorily touched on how Active Directory can…
We’re looking for some votes. A few good votes. We know that GroupID is an incredible product that helps Active Directory live up to its potential, creating productivity and security gains for your company. Windows IT Pro knows it too: they wrote a great review of GroupID, awarded us an Editor’s Choice award, and nominated…
I am constantly reminded how ubiquitous Active Directory groups are in our everyday corporate lives. They are seemingly used for everything (they’re not just for email any more). To illustrate, let me tell a quick story. One of my colleagues wasn’t able to finish a project as he was working from home. He told me…
Sorry to end a thread title with a preposition but I added a few periods to hopefully make it better. I was talking with one of our developers today about common synchronization jobs and he was curious about what are our most commonly used destinations and sources. Of course the answer is SQL, Oracle and…
No. And yes. Of course, those are both lame answers but there is no good answer to the broad question of having an Active Directory web interface. Because you very rarely want to have full admin rights to Active Directory available to anyone other than, say, full admins. And they are probably happy with ADUC.…
I recently read an interesting article about how the CFO feels about IT. (Hint: not good) The article was based on a survey of 344 CFOs. The survey showed that CFOs, “Are inclined to invest in technologies where competitive advantage can be demonstrated, analysis and decision-making is assisted, or efficiencies and cost reduction are achieved.”…