Crayon Cloud Easy Services Cloud Identity

Identity management is crucial to everyone, however in the cloud, it can become overly complex and time-consuming. Every deployment should start with focusing on how identities are managed and permissions are allocated. This ensures the right individuals have access to the correct on-premise or public cloud resources when needed. Crayon’s ID management offering allows us to work with customers on:

  • Conditional access policies
  • Implementation of Single Sign-On
  • Establishing identity governance
  • Protection against credential attacks
  • Privileged identity management

*This service is charged at a fixed price per domain.

Cloud ID

These identities exist solely in the cloud. In this scenario they would reside in Azure Active Directory and we will help create and manage these users and groups with the correct permissions.


Hybrid ID

Hybrid ID involves connecting on-premise identities to the cloud via Azure AD. Customers will have the options of Password Hash Sync, Pass-Through Authentication, or Active Directory Federation Services.


Single Sign-On and Federated ID

In today's enterprise, maintaining an arsenal of effective tools is all about access to applications. Organizations need to provide access to applications to the right people in order to streamline operations with secured mode of access. To accomplish this, organizations try to use digital identities for multiple users, Single Sign-On (SSO) and its variant called Federated ID tend to be the go-to mechanisms.

Federated ID is an arrangement that can be made between two or more trusted domains, to allow users of these domains to access any applications and services using the same identification data.


Multifactor Authentication with Conditional Access

The Azure Multi-Factor Authentication service delivers strong authentication via a range of easy verification options: Phone call, text message, or mobile app notification and one-time passwords. Per guidance from Microsoft we recommend implementing MFA as part of a Conditional Access policy to create a better user experience by minimizing the number of MFA challenges.