Types of Cloud
- Public: This is hosted by Cloud Services Providers (AWS, Azure, GCP, Alicloud), The users pay the bills for the resources created.
- Private: This is hosted by an organization/enterprise for its own applications/Business units. Openstack
- Hybrid: Combination of Public and Onpremises
Identity in Enterprises
- Active Directory (Microsoft):
- This is maintained by enabling Domain controllers on Windows Servers
- Authentication:
- Application Specific Authentication
- Single Sign on
- Federated (oAuth [login with google/facebook/github])
- Authorization
- RBAC (Role Based Authorization)
- Least Privilege Principal
- JIT Access (Just in time access)
- Operations:
- Admin controlled
- Self Service.
- Multi Factor Authentication
- SMS
- Authenticator apps/devices
Cloud – Identity (Enterprises)
- In cloud we will use Identity Services to manage
- users and permissions for using cloud
- users and permissions for the applications that are developed by organization.
- Cloud offers Identity as a service i.e. we can use cloud identity services for any application.
- Using existing Idenity credentials in cloud
AWS
- IAM (Identity and Access Management)
- cloud users
- permissions etc
- Cognito
- Identity Platform
Azure
- Microsoft Entra (Azure Active Directory)
- cloud users
- permissions
- Identity Platform
