For a long time now, IT teams have been stuck between two opposing forces; security policies and user productivity. It’s a conflicting place, the more security, the more restrictive the IT environment. Users see control as being more productive, validated by “I need to get my job done”, and who could argue against either view?
So what now? Well, all is not lost as IT can now have the best of both worlds with Azure. For starters you can analyse your environment using the Cloud App Discovery tool, which will provide you with a full picture of all SAS applications in use, and potential security threats. From here, you can incorporate these applications into your Azure self-service portal and allow users to manage application access using Azure Groups, again taking the burden away from IT.
However, what if you want to run services in Azure such as IaaS or SaaS? Role Based Access Control (RBAC), allows you to provide secure access to resources for users or groups by specifying permissions. Control can be delegated over applications, networks, virtual machines, data and files, increasing security, not compromising it.
Finally, multi-factor authentication and password self-service can be enabled in minutes for end-users, simplifying IT administration and reducing calls to the service desk. Wrapping security and controls with RBAC and self-service provides control and flexibility for both IT and end-users. It’s a win win!