×

IDMWORKS Blog

Enhancing Security in the Cloud with SailPoint IdentityNow


As more and more organizations migrate their Identity and Access management (IAM) program to the cloud, it has become imperative that multiple layers of security exist to keep bad actors at bay.

SailPoint’s IdentityNow cloud-based Identity Governance solution offers several security checks which are designed to provide an additional layer of security for users and the organization, including strong authentication and block access.

Strong Authentication

This ensures that authenticated users are presented with additional options to verify their identity before they are granted access to resources within the organization.

The options for Strong Authentication are:

● Verification codes sent via email or text message
● Security Questions
● Re-entering Passwords
● RSA SecurID

While strong authentication is required under certain scenarios within IdentityNow, i.e. prior to accessing administrative functions or updating personal preferences, this mechanism is configurable to occur at the point of login and during the launch of applications.

It can also be in effect for the following category of users:

● Everyone, or specific identity Profiles
● Off-Network users – Users outside of the corporate network
● Untrusted Geographies – Users accessing resources from untrusted Countries

Block Access

This method of added security ensures that no access is granted to users attempting to authenticate or launch an application within the portal.  

This restriction can be in effect for the following category of users:

● Off-Network users – Users outside of the corporate network
● Untrusted Geographies – Users accessing resources from untrusted Countries

This restriction mechanism is configurable to occur at login and during the launch of an application.

Questions, comments or concerns? Feel free to reach out to us below, or email us at IDMWORKS to learn more about how you can protect your organization and customers.

Leave a Reply

Your email address will not be published. Required fields are marked *