09.10.2018 - Identity And Access Management Solutions: Build vs. Buy
The build versus buy dilemma is one that nearly every company debates internally. This discussion often surfaces when the I.T. department wants to consider a purchase for software that either the in-house developers or CIO feels could be done in house. Why pay for what you can do yourself? Unfortunately, life is not that simple. There are a number of variables that should drive this discussion. I’ll share three (3) considerations here and have you refer to the Optimal IdM whitepaper, “Build vs. Buy – Identity And Access Management Solutions”, for a more detailed look. ...
08.20.2018 - Troubleshooting Federation with Fiddler – Part 3 of 3 – Debug Oauth2 and OpenID Connect Federation Issues
Fiddler is simply the best tool to debug federation issues. Optimal IdM has just released a white paper on this which you can download from our website. This is part two of a three-part blog series on this topic. In part one we covered how to use Fiddler to debug WS-Federation issues. In part two we covered how to use Fiddler to debug SAML 2.0 federation issues. Here in part 3 we will cover how to use Fiddler to debug Oauth2 and OpenID Connect federation issues. ...
03.26.2018 - Privileged Access Management 101
Privileged access management solutions will be beneficial if you use them correctly. This includes: ...
03.12.2018 - RealMe Integration Services from Optimal IdM
Wouldn’t it be nice if you could use a single login ID to renew your passport and driver’s license, see when mail was coming and pay government taxes all online? Well, if you’re from New Zealand, you may already be doing that and more with a service called RealMe. New Zealand’s Government is using RealMe to eliminate red tape and make doing things online easier and safer for individuals. If you’re interested in safe access management, contact Optimal IdM today or request a free trial of our IAM software. ...
01.3.2018 - Internal Hiring vs. Hiring a MSSP: Which Is Better?
There’s no question that in today’s day and age, you need a dedicated cybersecurity team to protect your company’s data. The question is, do you dedicate some of your existing IT staff to cybersecurity or do you use a managed security service providers (MSSP) services? Naturally, there are pros and cons to each approach. ...
12.20.2017 - Why Do Data Breaches Happen?
What is a data breach, how often do data breaches occur and how does a data breach happen? Data breaches are a massive cybersecurity issue that results in millions of lost and stolen documents each year. While data breach statistics for 2016 are still being tabulated, some of the biggest companies in the world have reported massive data losses over the last few years, including 80 million compromised records from Anthem health in 2015, 76 million JP Morgan Chase records in 2014, 145 million eBay records in 2014 and 70 million records from Target in 2013. ...
11.9.2017 - Top 10 Reasons for the Virtual Identity Server (VIS)
09.11.2017 - Buyer’s Guide to Multi-Factor Authentication (MFA)
MFA is the norm in business today due to the desire for better access control and the need to comply with regulatory requirements. And while every company and every vertical have different requirements for their MFA solutions, they all should start by analyzing the same three elements: scope, usability, and means of delivery. With these elements in mind, this paper takes a tactical approach to guide you through various MFA options. ...
08.3.2017 - Using MFA for Server Access Thanks to the Optimal GINA™ Plugin
Until now, it has been a difficult task to setup Multi-Factor Authentication (MFA) for server access, whether direct access through the console or via remote-desktop (RDP). However, with the Optimal GINA™ Plugin, for pGina, you can enforce MFA requirements for all server access. ...
07.10.2017 - Cloud Provisioning – The Good, Bad, and the Ugly
When we talk about provisioning cloud services, there is Just In Time (JIT) provisioning and bulk provisioning. JIT provisioning is where accounts are created as a side effect from federation. In other words, the first time a user federates to a service, his account is created using the federation token and information queried from the user. Bulk provisioning is where the accounts are created in bulk ahead of time and actively maintained independently from federation. The main problems with JIT provisioning are ...