Phase I — Implement free Microsoft IAM Services for Cloud-only Identities

A Cost-Effective Solution for SMEs (< 250) looking to establish their businesses in Public Cloud

Identity and Access Management (IAM)

IAM is a critical aspect of Security discipline. It authenticates and authorises individuals to access resource(s) they require to complete a certain task(s). IAM encompasses not just users but also devices, applications, and other entities that require authentication and authorization to access Azure Resources.

Traditional IAM System

An on-premise infrastructure is an organisation’s private cloud where they have complete control over its infrastructure and applications.

The traditional IAM System is a part of the organisation’s private cloud. Setting up the on-prem IAM system requires CapEx(upfront cost) that the organisation initially have to invest to build the IAM System. This is followed by the ongoing maintenance (Operational Expenditure (OpEx)) cost. Traditional IAM System also often lacks advanced security that the cloud company offers and at a lower cost. Read my previous article on Azure Foundation for more information on the On-premise Infrastructure.

Microsoft Entra ID

Microsoft Entra ID is a Cloud-based Identity and Access Management (IAM) Service. While Microsoft Entra is the umbrella term for a family of identity and access management (IAM) products, Microsoft Entra ID is one of the products of Microsoft Entra and is also the Foundational product.

Microsoft Entra ID use cases are:

• A unified platform for managing Managing Identities and Access Control
• Securing Identities and Credentials
• Hybrid Identity Management
• Collaborating with External Identities
• Application Management

Clients only Pay for what they use — This is Operational cost (OpEx) for ongoing maintenance.

Microsoft Entra ID allows users to access various resources. This includes: Microsoft 365, Azure resources, third-party apps…