Posts Tagged ‘identity & context virtualization’

Upcoming Webinar: Virtualization’s Role in the Emerging Identity Landscape

Wednesday, July 14th, 2010

By Elle Fredericks, Marketing Communications

In his recent paper, “The Emerging Architecture of Identity Management,” Gartner analyst Bob Blakely laid out a roadmap for a new identity management infrastructure. As a follow up, Bob will be joining Radiant Logic’s Dieter Schuller, Vice President of Sales and Business Development, for an upcoming webinar. The two will detail the new infrastructure as recommended by Gartner, and how Radiant Logic identity and context virtualization can help you implement it.

Needed: New Ways to Manage Identity

Over time, it has become increasingly difficult to build an integrated identity structure. As enterprises have added new audiences and acquired new companies, identities can no longer be managed the same way. What used to work—centralized authentication and authorization—no longer serves today’s far-flung, federated, and even cloud-based infrastructures.

The first challenge within such an evolving environment is to integrate identity and context for security and privacy. In order to do this, you need:

  1. A single view of identity through integration.
  2. A way to externalize security context (or any relevant context) out of existing data/application silos.
  3. The ability to join identity and context.
  4. And finally, the ability to scale in volume while providing the highest speed.

Until now, this has been an impossible task. But Bob and Dieter will give specifics on how these complex issues can be solved, and the answer is simple: Implement a virtual directory—but not just any virtual directory. You need a solution that will provide full support for an identity and context virtualization service.

Don’t Miss the Webinar!

Our upcoming webinar on July 17th at 8am PST will cover the new identity management infrastructure and the details for how to implement it within your unique identity environment.

Find out more:

Tags: , , , , , , , , , , ,
Posted in Uncategorized | No Comments »

You Don’t Want to Miss This One, Folks!

Thursday, July 8th, 2010

By Alex Rock, Radiant Logic Director of Marketing

At Radiant, we’ve known for some time that an overhaul of identity management architecture is required and it’s great to know we’re not alone.  Gartner VP and Research Director, Bob Blakely shares our opinion and has even laid out a roadmap for a new identity infrastructure in his latest research paper, The Emerging Architecture of Identity Management.” We couldn’t be more pleased that someone with such a respected voice—and a Gartner analyst no less!—is sharing the same story we’ve been telling for years.

The World of Identity is Changing—and Identity and Context Virtualization is Key

Your current identity management infrastructure is built for a world that no longer exists—one based on pushing identity from the center, instead of pulling it from many disparate sources. Today’s centralized identity infrastructure can’t keep up with tomorrow’s demands. Understanding this quandary is critical for you and the future of your enterprise.

Cloud computing, federation, and the need to scale are quickly changing the identity landscape and emphasizing the need for a transformation. Companies still struggling to solve today’s IdM challenges in their increasingly federated environments are now required to plan and account for tomorrow’s modern architectures, such as user-centric identity, Identity-as-a-service, and the cloud. Current enterprise IdM systems, designed to centralize management of the information used to authenticate employees and authorize their access to enterprise resources, simply won’t get us there.

According to Bob, the emerging identity infrastructure will be based on pulling identity from disparate sources at the time of use, and it will feature identity and context virtualization at its core—you’ve probably heard us talk about that a time or two! In addition to his recent paper, Bob also laid out his vision of a pull-based identity management architecture at Burton Catalyst EU in Prague at the end of June. Ian Glazer, also of Gartner, recapped it nicely in his blog.

Join us at Catalyst and Don’t Miss our Upcoming Webinar!

We’re gearing up for Catalyst North America in San Diego at the end of this month, where we will be showcasing some exciting new products. But before heading down to sun and surf, we invite you to join us for our next webinar on Thursday, July 15th at 8:00 a.m. PST, when Bob Blakely will expand on his groundbreaking research paper and Radiant’s Dieter Schuller will discuss Identity and Context Virtualization and give some tips on selecting this critical component of the new identity infrastructure.

Don’t miss this discussion on:

  • Why the current push model no longer works in today’s identity landscape.
  • How virtualization finally separates the production and storage of identities from their consumption.
  • How explicit context representation and externalization will drive finer-grained authorization and profile management—and change the way you relate to your customers.
  • How you can use smart virtualization to deliver identity and context as a service and create a complete IdM infrastructure for all your initiatives.

>> Sign up for the webinar

Learn more about Identity and Context Virtualization or catch us at Catalyst in San Diego for a demo of our new ID-Connect product.

Hope to see you there!

Tags: , , , , , , , , , , ,
Posted in Uncategorized | No Comments »

New VDS Context Edition 5.2 Delivers the Global View

Wednesday, November 11th, 2009

Manage Globally and Act Locally with RadiantOne Identity Virtualization

Big news from the Radiant product team—we’re thrilled to announce the new release of our flagship product. RadiantOne Virtual Directory Server Context Edition 5.2 is a data model-driven solution for complete identity integration and context management. And we’re very excited about what this will mean for enterprises like yours.

New Tools for an Increasingly Complex World

Think for a moment about the challenges you’re facing in your identity environment. Along with tight budgets and increasing demands, you’ve got:

  • New applications to support
  • High-value services to deliver—many beyond the firewall
  • And a whole mess of distributed and heterogeneous data sources

Now, Manage Globally, Act Locally is more than a slogan for us (although we’d have you all wearing Manage Globally, Act Locally t-shirts if we could)—it’s also a better way to deal with all this complexity.

Get the Unified View, with Security at the Source

Our latest release includes the new Global Identifier & Profile (GIP) Builder, a powerful tool that enables you to create a single, unified view of all identities and their profiles, without having to centralize your identity data into a single repository. So your enterprise can manage profiles globally and also act locally by enforcing security as close to the sources of service as possible.

Future-Proof Your Infrastructure

VDS Context Edition is a big leap forward, designed to help you solve today’s toughest identity integration challenges, while building a solid foundation for all tomorrow’s modern architectures, such as user-centric identity, IDaaS, and the cloud. So you’re covered for right now, and ready for whatever comes.

Explore how this new release will make a difference in your organization:

Oh, and I promise we’ll let you know as soon as there’s a Manage Globally, Act Locally t-shirt available. ;)

Lisa Grady – Product Marketing

Tags: , ,
Posted in Virtual Directory Server | No Comments »

Manage Globally. Act Locally.

Wednesday, November 4th, 2009


How identity and context virtualization will change the way we manage identities

My company invented the virtual directory to help take the complexity out of IdM. And now we’ve expanded on that idea to deliver a complete integration solution we call “identity and context virtualization.” I’d like to take the opportunity to explain what it is and why we developed it.

First off, when I say “IdM,” I mean it in its largest sense. While governance, risk, and compliance for internal populations is important, the larger and more rewarding task is helping you integrate high-value, heterogeneous identities for externally-focused initiatives, such as WAM, federation, SaaS, and more.

With that in mind, we’ve all got identities to integrate and new architectures to support.

But right now, the elements of identity are scattered across directories, databases, and applications. Reaching across all these heterogeneous, distributed data silos to aggregate and synchronize identities has proven nearly impossible.

So how do we solve today’s integration challenges and lay the groundwork for tomorrow’s modern architectures, such as user-centric identity, Identity-as-a-service, and the cloud? In short, we need to manage globally and act locally. By this I mean that we need to deliver a global view of identity, while we enforce security at the local level, as close to the sources of services as possible.

And this solution needs to be easily deployed and scalable, since nothing’s getting simpler in the world of identity, things are only growing more complex at every level.

But how can we fill such a tall order? Well, we begin with the idea that those who do not understand history are doomed to repeat it.

What won’t work: Wait and see vs. tear it down and start over

Some see the gap between the present and the future and urge caution, saying let’s wait and see what happens. Others want to throw away the current identity infrastructure and build something completely new.

But we can’t wait when it comes to staying productive and maintaining a competitive advantage. And we can’t afford to blow up what’s already there and build an entirely new infrastructure—yet another silo—to take us into the future.

Learning from the past to innovate for the present and future

So we took more pragmatic, evolutionary approach, using what we already have to develop an infrastructure with the future built in. To do that, we revisited an old idea—the metadirectory—and a newer idea—the virtual directory as a proxy—and combined the best of both worlds. The result is a solution that solves the identity integration challenges we’re facing now, while building the right foundation for all those potentially rich future applications, such as user-centric identity, IDaas, and the cloud.

Identity and Context Virtualization: The Best of Both Worlds

Rediscovering what’s old: Metadirectory

From the metadirectory, we learned the importance of building a global reference for each identity, through synchronization, correlation of global/local identifiers, and disambiguation (watch a video about identity and context virtualization). We also found tools that let us build a highly scalable solution.

The metadirectory also taught us what not to do: move every instance, every facet of an identity into a single directory. We cannot simply centralize identity to secure today’s distributed environments or enable tomorrow’s new services. For security’s sake, there are some categories of information that you cannot move around, such as primary credentials—especially passwords, the weakest link in the chain. Plus, when you try to centralize everything, putting all logic and all function in one place, you end up paralyzed by the complexity of the task.

Reinventing what’s new: Virtual directory as proxy

The “virtual directory as proxy,” which is Radiant-speak for what the market calls a “virtual directory,” solved this challenge of centralization by calling the underlying systems to check credentials. This lets security happen in the manner appropriate to each data source—by delegating the security checking, you’re “acting locally”—while providing an abstraction layer to shield applications from the complexity of the underlying silos.

But while we know the virtual directory delegates security quite elegantly, we also know that as a proxy alone, it cannot scale as the number of sources and volume of queries begin to rise.  As a consequence, the “virtual directory as proxy” remains confined to niche tactical deployments for a limited number of identities. And that’s unfortunate because the “delegation pattern” is a key requirement in many of today’s high-volume, heterogeneous, mission-critical identity deployments.

Finally, both architectures taught us that the more complete your abstraction, the better. Basically, metadirectory was not “meta” enough and virtual directory as a proxy was not “virtual” enough. The more comprehensive the model of your system, the more flexibility you have—making your infrastructure more adaptable and protecting it from unavoidable change.

Building a better platform: Identity and context virtualization

The key to delivering identity as a service is the ability to abstract identities with their corresponding security contexts, so you can deliver the best services according to your applications’ needs. The way to achieve that is by linking identity and security context through virtualization. Here’s how we do that:

  • Virtualization simplifies the entire process, acting as an abstraction layer between applications and data sources.
  • Global/local reference and disambiguation delivers one version of the truth by correlating identity overlap and building a global map of your identity. (The “manage globally” side of the equation.)
  • Proxy/delegation passes the credentials and password verification to the original source. (The “act locally” part.)
  • Synchronization provides the scalability, performance, and high availability required when data needs to be moved.

It’s not about the storage, it’s about the service…

This changes how directories are viewed. Now it’s not only about  storage, it’s also about delivering a set of services indispensable for the identity stack—and the directory is enabled to offer those services through the magic of virtualization. But this is more than a point solution that does a quick and dirty remapping of attributes and query routing; it’s a sophisticated virtualization that creates a complete model of your system.

Our approach to virtualization is all about flexibility and scalability. By building a single global data model out of all your existing systems, you have the flexibility to create unlimited new views of your existing data as your applications require. And synchronization between the logical layer and the physical layer is auto-generated, giving you a solution that scales, no matter how complex the integration, high the volumes, or heterogeneous the data sources composing the view.

The most critical element is no longer how identities are stored, but how they’re aggregated, synchronized, and disambiguated—in short, integrating identity first, then delivering it as a directory. This becomes a powerful new way to view directories: as a set of services you could package and deliver, using different protocols as needed—LDAP, of course, but also SQL, as well as newer protocols such as web services.

Delivering a global view of identity…and linking its contexts

Identity virtualization allows you to reach an individual user across all silos to enforce security and deliver other integrated services. But once you have a handle on that identity, you can also begin to look at that user’s interactions across silos—the actor and his context.

But that’s a topic for another post…

We’ll explore the context side of identity and context virtualization next time.

Tags: , , ,
Posted in Context, Correlation / Global Key Mapping, Data Model, Identity Integration, Market Trends and Analysis, Synchronization, Virtual Directory Server | 3 Comments »