Equipped with legacy identity tools, contemporary IT teams are challenged to meet the complex Identity and Access Management (IAM) needs of the modern hybrid enterprise. IT must provide simple and secure access to on-premises web applications, as well as dozens of cloud apps like Office 365, G Suite, Salesforce, and Box.
But legacy solutions like CA Technologies SiteMinder and Oracle Access Manager are not equipped to manage cloud applications, and are becoming increasingly complex, resource-intensive, and expensive to maintain. Here are the three major pain points that are pushing enterprise IT teams to find a simpler solution.
Pain Point One: Hidden Costs
Maintaining a legacy web-access management system means incurring several recurring costs you may not think about. In many cases, these expenses end up dwarfing the initial one-time costs you made to get these systems running in the first place. For example…
On-Prem Infrastructure: The costs of servers, the electricity they run on, and the air-conditioning used to keep them cool all add up. Not to mention the cost of general IT upkeep, which is especially burdensome when upgrading or replacing hardware. Unless you happen to really enjoy server racks and ethernet cables.
Subscription & Maintenance: The recurring subscription and maintenance costs of a legacy SSO infrastructure also add up. For a large enterprise, running products like CA Technologies SiteMinder may cost many hundreds of thousands of dollars each year.
Retaining Personnel: Hiring, training, and retaining staff to keep a legacy infrastructure up and running is becoming increasingly costly. As products like CA Technologies SiteMinder and Oracle Access Manager become obsolete, it’s becoming more challenging and expensive to find and retain personnel that can actually maintain these solutions.
Degrading Support: The value of support is also declining. As legacy web access management tools reach end-of-life status, support and maintenance staff for these solutions shrink. Customers spend the same amount each year for weaker support. These products also do not keep up with latest revisions of web servers or new protocols like OpenID Connect.
Pain Point Two: Security Concerns
Inflexible Security: The inflexibility of many legacy web access management solutions’ infrastructures prevents organizations from keeping up with modern security needs and associated technologies. For example, many organizations implemented RSA SecurID years ago, and as a result, are unable to integrate more modern security solutions like Google Authenticator, security event streaming, or Adaptive Authentication.
Vulnerability due to Complexity: The infrastructures of legacy SSO solutions are also so complex that IT admins are often reluctant to make changes to them after deployment. IT admins who make alterations outside of the boundaries of the initial deployment run the risk of breaking the system or inadvertently creating security holes.
Pain Point Three: Lost Productivity
Outages and Server Downtime: Updating legacy software sometimes causes outages or server downtime, which ultimately results in wasted time and resources.
Delayed Application Development: Modern enterprises are using DevOps to improve time-to-market for internally developed applications. However, the network architecture requirements of legacy solution infrastructure requires coordination between developers and TechOps to release updates and new applications. This ultimately results in slowed time-to-market and lost productivity.
What to look for in a solution
Modern organizations are pursuing Identity-as-a-Service (IDaaS) vendors that can help them minimize these pain points. Here are the four key requirements organizations are looking for in a solution:
Reduced Resource Requirements: The solution should reduce resource-intensive requirements imposed by legacy identity solutions, including infrastructure, maintenance, and personnel costs.
Unified Identity and Access Management: The solution should offer centralized user access control that allows IT to be much more efficient when granting employees access to both cloud and on-premises web apps.
Modern Security Options: The solution should provide an abundance of security parameters for IT to leverage in order to make their environments more secure. These include flexible Multi-Factor Authentication (MFA), and Adaptive Authentication, and security events streaming.
Simplified On-Prem App Access: Users should have access to both on-premises web apps and SaaS apps within a consolidated Single Sign-On portal, improving user productivity.
Modern organizations are choosing OneLogin because it meets all of these requirements. In fact, over 2,000 enterprise customers globally secure their applications with OneLogin, including Airbus, Steelcase, Pinterest and Zendesk.
Before becoming a OneLogin customer, SOTI, the leading provider of Enterprise Mobility Management (EMM) software, faced the challenge of implementing unified MFA policies across over a dozen internal applications sitting behind the firewall. They needed to confirm that both internal and external employees were able to securely access all the apps they needed.
By adopting OneLogin, SOTI is now able to provide all of their employees with single sign-on access to both SaaS and on-premises apps, while also maintaining an extra layer of security with uniform multi-factor authentication policies.
Want to see if OneLogin is a fit for your organization? Click here to get a free demo.