Date post: | 21-Dec-2015 |
Category: |
Documents |
Upload: | allyson-magdalen-griffith |
View: | 215 times |
Download: | 1 times |
Confidential FullArmor Corp. 2015
Platform for SaaS and mobile apps to remotely access, migrate, and sync Active Directory resources with the cloud
ADanywhere API Platform
Corporate apps
Confidential FullArmor Corp. 2015
Value Proposition for the App Developer
Internal Corporate Network
How do I enable my cloud app to access internal resources like it did when it was on-premise?
When the app is internal, it has access to internal resources.
Applications that have had access to internal resources when on-premise are challenged to connect when they are ported as a SaaS app in the cloud. ADanywhere APIs enable the SaaS app to seamlessly connect back into the network without the requirement of VPN, FTP, or ADFS.
ADanywhere APIs enable the SaaS app to securely access internal resources as if it was still on-premise.
When the app is in the cloud, it is not easy to connect back.
Confidential FullArmor Corp. 2015
Value Proposition to SaaS/Mobile apps
Dynamic connectionNo VPN, FTP or ADFS
-Management-Security-Reporting-Monitoring
SaaS and mobile apps such as workflow, automation, CRM, etc. require secure access to internal corporate resources to meet the various needs of their customers. These scenarios include the ability to access internal files from the cloud without requiring VPN, syncing users and groups to a cloud directory, running a workflow from an on-premise instance of SharePoint, or printing to a local printer from a mobile device.
ADanywhere enables developers to add this functionality to their apps without requiring the customer to set up a VPN, FTP, or a farm of ADFS servers.
Confidential FullArmor Corp. 2015
Value Proposition with SSOSSO provides access to on-premise and cloud apps with Active Directory (or LDAP) integration. However, external employees, apps, devices, and workflows also require access to internal resources including files shares, SharePoint, printers, and user/group information without the requirement of VPN, FTP, and ADFS servers.
Active Directory
SSO
On-premise apps
Cloud apps
Active DirectoryADanywhere
File shares
No VPN required
Printers
Users/Groups
Confidential FullArmor Corp. 2015
Value Proposition with Cloud Storage
1) View only (keep on-premise) 2) Collaborate (on-premise with cloud
storage)3) Sync (on-premise with cloud storage)
ADanywhere provides 3 options for working with internal files:
In an Enterprise Strategy Group survey, more than 2/3 of respondents were extremely interested in utilizing on-premise storage resources to maintain control over corporate data and leverage existing investments.
“…enterprise IT organizations want the comfort of having the ability to choose where data lives, including keeping some in-house.” (Terri McClure, Enterprise Strategy Group)
ADanywhere allows the pure cloud storage vendors to compete better with hybrid vendors. The cloud based storage market is growing from
$20B to $45B over the next few years - IDC
~$6B
~$14B
ESG survey says over 67% of enterprises want an on-premise option
Cloud file storage products enable sharing and collaboration in the cloud. However, for security and regulatory purposes, certain files must remain on-premise.
Confidential FullArmor Corp. 2015
Comprehensive set of APIsThe ADanywhere API set enables secure access, migration, and syncing between on-premise resources and the cloud through an AD/SSO, multi-tenant, consolidated web and mobile access.
ADgateway API•Lightweight, on-premise server client consisting of Services and API’s for direct integration, access, sync and migration of on-premise AD and cloud resources
CloudAccess API•Remote (Cloud, DMZ or Perimeter Device) access to ADgateway APIs and Services
Security Services API•SSO using OAuth, OpenID, SAML, SSL Key Management, Auditing, User Access Level, Permissions Management
Office 365 API•Remotely accessing SharePoint, Exchange, and OneDrive
DesktopGateway API•Non-AD connected desktop access to read, write, copy, sync or migrate files. Uses native Windows Explorer extension for direct access to remote AD resources.
Confidential FullArmor Corp. 2015
Management FrameworkIncludes a set of services for complete security and manageability
Reporting
Monitoring
Provisioning
Users/Groups Analytics
SecuritySSO, SSL
Confidential FullArmor Corp. 2015
Comparing ApproachesFeatures ADanywhere VPN ADFS FTP
Dynamic Connection x x
Reporting x x
Auditing x x x x
Workflow x x
Syncing x x
APIs for SaaS, mobile apps x
Does not require additional Servers/HW x
Optimized, Fast Connection x
Does not require additional firewall configuration x
Multi-tenancy support x
Confidential FullArmor Corp. 2015
ADgateway APIOn-premise server client consisting of Services and API’s for direct integration, access, sync and migration of on-premise AD and cloud resources
ADanywhere APIsa) AD Auth – Authorization request handler based on AD login requests
b) AD OU/Groups/Users/Permissions Access – Read, write, copy, sync or migrate AD User management resources
c) AD File share access - Read, write, copy, sync or migrate AD Files and File Shares
d) SharePoint access - Read, write, copy, sync or migrate SharePoint Files and File Shares
e) Printer controls – Remote access and print
f) Desktop computer file access (AD Connected desktops) - Read, write, copy, sync or migrate files on AD connected Desktop computers
g) HTTPS communications access – REST API access to AD Resources
h) Jobs Engine – XML based Jobs processing engine and jobs queue manager (run once, schedule, run multiple based on schedule)
i) Large File Transfer Handler – File transfer manager for large files and folders
j) File Sharing Service and API – Create and manage file sharing links for outside collaborators
Confidential FullArmor Corp. 2015
CloudAccessRemote (Cloud, DMZ or Perimeter Device) access to ADgateway APIs and Services
ADanywhere APIsa) DB Access Layer
b) Multi Tenancy management
c) Web UI
d) HTML based File Viewer – Browser and Mobile File open and view files from Gateway and Gatekeeper sources
e) Mobile Access – Native Mobile IOS and Android app UI into ADgateway services
Confidential FullArmor Corp. 2015
Security ServicesADanywhere APIsa) SSO APIs (OAuth, OpenID, SAML)
a) On-premise AD as Identity provider
b) Box
c) Dropbox
d) Azure AD
e) Office365
b) SSL Key Management – On-premise SSL Encryption Key Management
c) Auditing API
d) User Access Level, Permissions Management – Manage access rights to resources (Admin Full Access, Admin read only, Read Only, Full Access, No Access)
Confidential FullArmor Corp. 2015
Office 365 APIs
ADanywhere APIsa) SharePoint - Read, write, copy, sync or migrate Office 365 SharePoint Files and File Shares
b) Exchange File Access - Read, copy, sync or migrate Office 365 Exchange Email file attachments
c) OneDrive - Read, write, copy, sync or migrate Office 365 OneDrive Files and File Shares
Confidential FullArmor Corp. 2015
DesktopGateway (Non-AD connected Desktop access)
ADanywhere APIsa) Read, write, copy, sync or migrate files on non-AD connected desktop computers.
b) Native Windows Explorer extension for direct access to remote AD resources.