As organizations adopt cloud applications in droves, end users end up having to deal with more and more passwords throughout the day just to complete their work. Users begin suffering from password fatigue and forget their passwords, which leads to password-related help desk calls and reduced productivity. Or, they start using weak passwords that are easier to remember, but compromise IT security. For effective user identity management, you need to adopt an efficient and secure approach to managing users’ passwords.
ADSelfService Plus is an enterprise single sign-on (SSO) solution that provides users with seamless, one-click access to cloud applications. It allows users to enter a username and password just once, and gives them secure access to multiple cloud applications. Users can now access all their cloud applications with just one identity. ADSelfService Plus minimizes password security issues, increases productivity, and eases identity management challenges, while also enhancing user experience.
Users are simply required to log in to ADSelfService Plus, which acts as the identity provider. Once logged in, users are presented with a dashboard that lists every cloud application they have access to. With just one click, users will be able to access each application without having to enter their username and password again.
ADSelfService Plus protects access to cloud applications with multifactor authentication. When SSO is enabled, users must always authenticate themselves in ADSelfService Plus—first using the tried and tested Windows Active Directory domain credentials, and then using another factor chosen by you. For the second factor, ADSelfService Plus supports native factors such as SMS or email-based verification codes as well as third-party authentication providers such as Duo Security, RSA SecurID, RADIUS server, and Google Authenticator. Learn how ADSelfService Plus ensures cloud apps security with two-factor authentication.
ADSelfService Plus utilizes users’ existing identities in Windows Active Directory for authentication. This saves time that would have otherwise been spent on setting up new identities for users, and also removes any dependency on password vaulting tools for storing additional passwords. ADSelfService Plus also uses the OU and group structure in Active Directory to control access to cloud apps. Learn how ADSelfService Plus lets you easily use Active Directory identities for setting up single sign-on for cloud apps.
You can control who accesses which cloud applications by creating policies based on Active Directory OUs and groups. You can create multiple policies and restrict access to critical business applications to only those users who need them. For example, you can create and enforce a policy that provides access to sales applications only for users in the sales OU, and another policy that provides access to finance applications only for users in the finance OU.