Directory-as-a-Service (DaaS) is a cloud solution for enterprise user storage, which manages LDAP or Microsoft Active Directory (AD) as a cloud service. DaaS, like many cloud platforms, is not just cloud-based AD or LDAP. It is not just based on cloud directory or LDAP. DaaS will fully combine the advantages of these two tools to deal with the surge of cloud services and device types in the form of a modern directory. Key IT trends.
DaaS is defined as the unified connection and secure management of employee and IT resources through a single cloud user directory. Specifically, the user directory is securely stored in the cloud and serves as the single source of data for all employee access to devices and applications, as well as the central connection point for complementary solutions such as single sign-on (SSO). While some businesses can quickly migrate to DaaS, others may need to migrate to the cloud by extending their existing AD or LDAP directory.
How Directory-as-a-Service works
DaaS is the core IT service that enterprises use to authenticate, authorize, and manage users, devices, and applications. The following will briefly explain the various functions of DaaS:
1) Authentication
DaaS can record or extend the directory to receive user authentication requests through LDAP protocol or REST API. Alternatively, proxy servers can be deployed on Windows, Mac or Linux devices to perform tasks, policy management and security auditing and ensure device survivability.
2) authorization
DaaS also provides authorization capabilities to ensure that compliant users have the appropriate access to IT resources, as well as manage group membership and sudo access, and execute commands to add or remove users from the device.
3) Device management
The final key capability of DaaS is the management of Windows, Mac or Linux devices at scale, simplifying the execution of tasks such as globally updating policy settings, modifying registry settings, applying patches and changing system configurations on devices, while allowing similar objects to Group and apply the same policies and configurations across objects, ensuring consistency across your environment.