Securing Active Directory Groups in the Cloud
NASA made a revelation recently revealed that their attempts at moving to the cloud introduced security gaps. This came about after an internal review by NASA’s inspector general. Servers, files, and other resources were without the protections that had previously been in place with on-premise based controls.
The same concerns about security in a cloud based world has left some private organizations wondering if moving to the cloud is for them. Certainly you cannot fault the hesitancy when you hear of these stories. At Imanami, we have been working with organizations who considered these issues and fortunately for them, we have helped them with the transition and are especially adept to those organizations who will continue to live with on-premise and cloud solutions (hybrid).
Currently about 78% of organizations grant access to systems based on group membership. I think this will go up based on cloud adoption. As was outlined in the post on “Using AD groups for cloud identity management,” more cloud single sign on vendors are using on premise Active Directory groups to determine who should have access to cloud apps.
We know that most organizations manage their users’ access with Active Directory. As many of these organizations are moving business applications to the cloud, this will not change. Take of example cloud-based messaging solutions currently dominated by Google and Microsoft.
If you are thinking about moving to the cloud and concerned about security, speak to one of our experts who can help guide you.
Jonathan Blackwell
View ProfileSince 2012, Jonathan Blackwell, an engineer and innovator, has provided engineering leadership that has put GroupID at the forefront of group and user management for Active Directory and Azure AD environments. His experience in development, marketing, and sales allows Jonathan to fully understand the Identity market and how buyers think.