|By Business Wire||
|June 4, 2014 09:11 AM EDT||
The dream of enterprise security based on one unifying identity has faded. It has been displaced by the reality of multiple identities in the era of the connected business where the cloud, mobile computing, and APIs are helping to extend processes to customers, partners, and other groups within the organization. Now, just as organizations have turned to the enterprise service bus (ESB) to connect their disparate systems, businesses are realizing the need for an enterprise identity bus (EIB) to connect and manage their various identities based on multiple standards. Today, WSO2 addresses this demand with the launch of WSO2 Identity Server 5.0, the industry’s first enterprise identity bus.
The latest release of the award-winning WSO2 Identity Server adds significant new capabilities for managing the many security standards now in use across enterprises, including:
- Identity token transformation and mediation for seamless integration between internal applications and cloud apps, such as Salesforce, Google Apps, and Microsoft Office 365.
- New user and group provisioning capabilities, which enable WSO2 Identity Server to translate and broker provisioning requests across a range of security, Web and cloud standards.
- Multi-option and multi-step authentication to provide flexibility in selecting authentication options and enable robust multi-factor authentication.
“Through the cloud, mobile, APIs, social media, and Internet of Things, enterprises are creating new connections across employees, customers and partners—and introducing a dizzying array of standards for identifying these users,” said Paul Fremantle, WSO2 co-founder and CTO. “The release of our WSO2 Identity Server 5.0, the industry’s first enterprise identity bus, embraces this diversity by providing a central backbone for managing user identities, regardless of the standards on which they are based.”
Robust Identity Management On-premises and in the Cloud
Version 5.0 builds on the proven performance of WSO2 Identity Server 4.5, the enterprise-ready, 100% open source, lean, component-based software, which has been in production in Global 1000 enterprises since 2009.
WSO2 Identity Server enables enterprise architects and developers to improve the user’s experience by reducing identity provisioning time, guaranteeing secure online interactions, and delivering a reduced single sign-on (SSO) environment. It also decreases the burden of identity management and entitlement management by including role-based access control, attribute-based access control, fine-grain policy-based access control, and SSO bridging. Featuring full native multi-tenancy, WSO2 Identity Server can run on servers, in a private cloud, public cloud or hybrid cloud environment—all from the same software.
Support for System for Cross-domain Identity Management (SCIM) for identity provisioning facilitates user management operations across software as a service (SaaS) applications. Additionally, federated identity provider (IdP) functionality allows different organizations to make shared services available—for example different universities sharing certain resources with each other’s faculty or students—while enabling single sign-on simplicity for end users. Such federated IdP is particularly important for facilitating authentication across extremely large deployments associated with the cloud and platform as a service (PaaS).
“We have had great success implementing WSO2 Identity Server for user authentication as part of the solutions we’re delivering based on the WSO2 Carbon middleware platform and WSO2 Private PaaS,” said Kambiz Darabi, managing director at m-creations, a German IT consultancy dedicated to mobile IT. “We are excited about the new capabilities being launched with version 5.0, which address the challenges of linking together heterogeneous systems and the growing demand to integrate internal and cloud applications.”
“The SSO environment implemented with WSO2 Identity Server has fully met our expectations and is enabling us to realize the goals we set out for simplifying our user identity administration,” said Abdullah Al Tahhan, a senior project manager at ELM, a trusted provider of secure electronic services in Saudi Arabia. “We are quite pleased with WSO2’s technology, but more than anything, when we think of future engagements, we are going to think of WSO2 because of the great support.”
Introducing Enterprise Identity Bus Capabilities
WSO2 Identity Server 5.0 adds significant new functionality to facilitate identity management across multiple identity standards, devices, domains and applications—on-premises and in the cloud.
Identity token transformation and mediation – With version 5.0, WSO2 Identity Server is capable of performing transformation and mediation between any identity token, including Security Assertion Markup Language (SAML) 2.0, OAuth 1.0/2.0, OpenID, OpenID Connect, and WS-Federation (passive).
Identity token transformation and mediation enables seamless integration between an enterprise’s internal applications running on servers or in a private PaaS and cloud applications, such as Salesforce, Google Apps, and Microsoft Office 365. Additionally, users can bring their own IDs to connect to enterprise systems. For example, Salesforce requires a SAML token for authentication, but a user may want to connect using OpenID. WSO2 Identity Server directs the user to any OpenID provider and translates the token to the correct SAML format for SalesForce to consume. SalesForce only needs to trust WSO2 Identity Server, which acts as a federation bus across all applications.
New user and group provisioning capabilities – WSO2 Identity Server 5.0 can be used to automatically provision users and groups of users onto various platforms. This provisioning can be explicit by pushing the user/group definition to the target system or just-in-time as the user logs in. Integrated with a federated identity provider, just-in-time provisioning enables a corresponding subject to be provisioned to its internal user store and any other provisioning system.
Through the provisioning bridge, WSO2 Identity Server 5.0 also can transform SCIM and SOAP-based provisioning requests into provisioning requests to other formats, such as Service Provisioning Markup Language (SPML) 2.0, Salesforce, Google Apps, Lightweight Directory Access Protocol (LDAP), Active Directory, and Java Database Connectivity (JDBC). In addition to these predefined connectors, which are available out of the box, the WSO2 Identity Server 5.0 runtime can work with custom provisioning connectors.
Multi-option and multi-step authentication – With WSO2 Identity Server 5.0, a service provider, irrespective of the protocol it supports, can select one or more login options that it wants to present to users, such as user name and password, Facebook, SAML or OpenID Connect. Additionally, the service provider can enforce multi-factor authentication by choosing multiple steps that align the right authenticators with the right step.
Additional New Features – WSO2 Identity Server 5.0 includes other new features to provide greater ease of use and facilitate user provisioning and management. With this latest release:
- A Web-based dashboard for end users provides an intuitive, friendly alternative to the administration console for user management tasks, such as updating the user profile, associating social logins to the profile, changing the security challenge questions, resetting the password, managing an OpenID profile, and viewing identity providers.
- Remote user store management makes it possible to manage heterogeneous user stores distributed across different data centers from a single WSO2 Identity Server node.
WSO2 Identity Server Builds on WSO2 Carbon Platform
WSO2 Identity Server is part of the modular, fully componentized OSGi-compliant WSO2 Carbon enterprise middleware platform. Like all WSO2 middleware products in the award-winning WSO2 Carbon platform, it is inherently cloud-enabled and uses proven core framework components that provide a consistent set of enterprise-class management, security, clustering, logging, statistics, tracing, and other capabilities. Additionally, it offers a graphical management console, which is integrated with other WSO2 middleware products, for configuration, management and monitoring. As a result, enterprises have unprecedented flexibility to enrich WSO2 Identity Server by adding any of the features in the WSO2 Carbon central repository, which are based on 175-plus components.
Availability and Support
WSO2 Identity Server 5.0 is available today as a software download that can run directly on servers or on top of WSO2 Private PaaS, and as a WSO2 Cloud Virtual Machine running on the Amazon Elastic Computing Cloud (EC2), Linux Kernel Virtual Machine (KVM), and VMware ESX. Additionally, customers can choose to have WSO2 host WSO2 Identity Server through the WSO2 Managed Cloud service. As a fully open source solution released under the Apache License 2.0, it does not carry any licensing fees.
WSO2 Identity Server is backed by a world-class technical team in which the experts that helped create the software provide support, leading to direct and immediate access to the people with in-depth knowledge of the middleware. WSO2 service and support options include evaluation support, a special QuickStartSM consulting program, development support, and production support.
WSO2 delivers on the promise of the connected business with the only completely integrated enterprise platform that enables businesses to build, integrate and manage their APIs, applications, and Web services on-premises, in the cloud, and on mobile devices. Leading enterprise customers worldwide rely on WSO2’s award-winning 100% open source platform and its robust governance and DevOps functionality for their mission-critical applications. Today, these businesses represent nearly every sector: health, financial, retail, logistics, manufacturing, travel, technology, telecom and more. Visit http://wso2.com to learn more, or check out the WSO2 community on the WSO2 Blog, Twitter, LinkedIn, and Facebook.
Trademarks and registered trademarks are the properties of their respective owners.
In their session at @ThingsExpo, Shyam Varan Nath, Principal Architect at GE, and Ibrahim Gokcen, who leads GE's advanced IoT analytics, focused on the Internet of Things / Industrial Internet and how to make it operational for business end-users. Learn about the challenges posed by machine and sensor data and how to marry it with enterprise data. They also discussed the tips and tricks to provide the Industrial Internet as an end-user consumable service using Big Data Analytics and Industrial C...
Jan. 28, 2015 01:00 AM EST Reads: 4,191
How do APIs and IoT relate? The answer is not as simple as merely adding an API on top of a dumb device, but rather about understanding the architectural patterns for implementing an IoT fabric. There are typically two or three trends: Exposing the device to a management framework Exposing that management framework to a business centric logic Exposing that business layer and data to end users. This last trend is the IoT stack, which involves a new shift in the separation of what stuff happe...
Jan. 28, 2015 12:30 AM EST Reads: 4,613
The Industrial Internet revolution is now underway, enabled by connected machines and billions of devices that communicate and collaborate. The massive amounts of Big Data requiring real-time analysis is flooding legacy IT systems and giving way to cloud environments that can handle the unpredictable workloads. Yet many barriers remain until we can fully realize the opportunities and benefits from the convergence of machines and devices with Big Data and the cloud, including interoperability, ...
Jan. 27, 2015 11:45 PM EST Reads: 4,044
The Internet of Things (IoT) promises to evolve the way the world does business; however, understanding how to apply it to your company can be a mystery. Most people struggle with understanding the potential business uses or tend to get caught up in the technology, resulting in solutions that fail to meet even minimum business goals. In his session at @ThingsExpo, Jesse Shiah, CEO / President / Co-Founder of AgilePoint Inc., showed what is needed to leverage the IoT to transform your business. ...
Jan. 27, 2015 06:15 PM EST Reads: 5,337
Dale Kim is the Director of Industry Solutions at MapR. His background includes a variety of technical and management roles at information technology companies. While his experience includes work with relational databases, much of his career pertains to non-relational data in the areas of search, content management, and NoSQL, and includes senior roles in technical marketing, sales engineering, and support engineering. Dale holds an MBA from Santa Clara University, and a BA in Computer Science f...
Jan. 27, 2015 06:00 PM EST Reads: 4,964
The Internet of Things (IoT) is rapidly in the process of breaking from its heretofore relatively obscure enterprise applications (such as plant floor control and supply chain management) and going mainstream into the consumer space. More and more creative folks are interconnecting everyday products such as household items, mobile devices, appliances and cars, and unleashing new and imaginative scenarios. We are seeing a lot of excitement around applications in home automation, personal fitness,...
Jan. 27, 2015 06:00 PM EST Reads: 4,687
Software AG and Wipro Ltd. have announced a joint solution platform for streaming analytics that provides real-time actionable intelligence for the Internet of Things (IoT) market. “The key to successfully addressing the IoT market is the ability to rapidly build and evolve apps that tap into, analyze and make smart decisions on fast, big data”, said John Bates, Global Head of Industry Solutions and CMO, Software AG. To address the huge market potential created by streaming analytics in conj...
Jan. 27, 2015 06:00 PM EST Reads: 1,327
MapR Technologies on Tuesday announced the availability of free Hadoop On-Demand Training for developers, analysts and administrators which represents a $50M in-kind contribution* to the broad Hadoop community. The Hadoop training program is a multi-course curriculum designed to expand worldwide adoption of Hadoop technology. The curriculum provides engaging and interactive video lessons, hands-on exercises, labs and quizzes, enabling professionals to acquire valuable Hadoop skills and knowledge...
Jan. 27, 2015 03:00 PM EST Reads: 910
“We help people build clusters, in the classical sense of the cluster. We help people put a full stack on top of every single one of those machines. We do the full bare metal install," explained Greg Bruno, Vice President of Engineering and co-founder of StackIQ, in this SYS-CON.tv interview at 15th Cloud Expo, held Nov 4–6, 2014, at the Santa Clara Convention Center in Santa Clara, CA.
Jan. 27, 2015 02:45 PM EST Reads: 3,876
"People are a lot more knowledgeable about APIs now. There are two types of people who work with APIs - IT people who want to use APIs for something internal and the product managers who want to do something outside APIs for people to connect to them," explained Roberto Medrano, Executive Vice President at SOA Software, in this SYS-CON.tv interview at Cloud Expo, held Nov 4–6, 2014, at the Santa Clara Convention Center in Santa Clara, CA.
Jan. 27, 2015 02:30 PM EST Reads: 4,179
An entirely new security model is needed for the Internet of Things, or is it? Can we save some old and tested controls for this new and different environment? In his session at @ThingsExpo, New York's at the Javits Center, Davi Ottenheimer, EMC Senior Director of Trust, reviewed hands-on lessons with IoT devices and reveal a new risk balance you might not expect. Davi Ottenheimer, EMC Senior Director of Trust, has more than nineteen years' experience managing global security operations and asse...
Jan. 27, 2015 02:15 PM EST Reads: 4,676
Performance is the intersection of power, agility, control, and choice. If you value performance, and more specifically consistent performance, you need to look beyond simple virtualized compute. Many factors need to be considered to create a truly performant environment. In his General Session at 15th Cloud Expo, Harold Hannon, Sr. Software Architect at SoftLayer, discussed how to take advantage of a multitude of compute options and platform features to make cloud the cornerstone of your onlin...
Jan. 27, 2015 02:15 PM EST Reads: 4,965
Software Defined Storage provides many benefits for customers including agility, flexibility, faster adoption of new technology and cost effectiveness. However, for IT organizations it can be challenging and complex to build your Enterprise Grade Storage from software. In his session at Cloud Expo, Paul Turner, CMO at Cloudian, looked at the new Original Design Manufacturer (ODM) market and how it is changing the storage world. Now Software Defined Storage companies can build Enterprise grade ...
Jan. 27, 2015 02:00 PM EST Reads: 3,618
Hardware will never be more valuable than on the day it hits your loading dock. Each day new servers are not deployed to production the business is losing money. While Moore's Law is typically cited to explain the exponential density growth of chips, a critical consequence of this is rapid depreciation of servers. The hardware for clustered systems (e.g., Hadoop, OpenStack) tends to be significant capital expenses. In his session at Big Data Expo, Mason Katz, CTO and co-founder of StackIQ, disc...
Jan. 27, 2015 02:00 PM EST Reads: 4,751
Midway through the decade, the experts from Veeva Systems – a leader in cloud-based software for the global life sciences industry – look at what’s on the horizon over the next five years. Their forecasts are informed by a vision for what’s next in technology and insight gleaned from Veeva’s 200+ life sciences customers worldwide. Overall, these predictions reflect how new innovations will enable faster time to market, evolving commercial models, and new ways to support physicians and patients. ...
Jan. 27, 2015 02:00 PM EST Reads: 997
SYS-CON Media announced that Splunk, a provider of the leading software platform for real-time Operational Intelligence, has launched an ad campaign on Big Data Journal. Splunk software and cloud services enable organizations to search, monitor, analyze and visualize machine-generated big data coming from websites, applications, servers, networks, sensors and mobile devices. The ads focus on delivering ROI - how improved uptime delivered $6M in annual ROI, improving customer operations by minin...
Jan. 27, 2015 02:00 PM EST Reads: 5,509
DevOps Summit 2015 New York, co-located with the 16th International Cloud Expo - to be held June 9-11, 2015, at the Javits Center in New York City, NY - announces that it is now accepting Keynote Proposals. The widespread success of cloud computing is driving the DevOps revolution in enterprise IT. Now as never before, development teams must communicate and collaborate in a dynamic, 24/7/365 environment. There is no time to wait for long development cycles that produce software that is obsolete...
Jan. 27, 2015 01:15 PM EST Reads: 3,994
In this demo at 15th Cloud Expo, John Meza, Product Engineer at Esri, showed how Esri products hook into Hadoop cluster to allow you to do spatial analysis on the spatial data within your cluster, and he demonstrated rendering from a data center with ArcGIS Pro, a new product that has a brand new rendering engine.
Jan. 27, 2015 01:15 PM EST Reads: 2,644
The Internet of Things will greatly expand the opportunities for data collection and new business models driven off of that data. In her session at @ThingsExpo, Esmeralda Swartz, CMO of MetraTech, discussed how for this to be effective you not only need to have infrastructure and operational models capable of utilizing this new phenomenon, but increasingly service providers will need to convince a skeptical public to participate. Get ready to show them the money!
Jan. 27, 2015 12:30 PM EST Reads: 4,529
The 3rd International Internet of @ThingsExpo, co-located with the 16th International Cloud Expo - to be held June 9-11, 2015, at the Javits Center in New York City, NY - announces that its Call for Papers is now open. The Internet of Things (IoT) is the biggest idea since the creation of the Worldwide Web more than 20 years ago.
Jan. 27, 2015 12:15 PM EST Reads: 4,805