Categories: Identity and Access Management

Does your IAM solution really need an Agent?

Most IAM tools utilize browser extensions or applications installed on the end-user’s machine, or on an Active Directory, for access to identity. But why?! A user can be identified even without an agent – so having an so-called ‘lightweight agent’ sitting in your Active Directory itself is not the most secure way to manage user identity.

Whenever you create a dependency to achieve a particular solution, it is important to ensure the solution is 100% secure and that applies for the dependencies (Agents) too. This could make the architecture slightly complicated, depending on how it works.

Another important factor against the use of an Agent-based architecture is that  you have to trust the Agent not to exceed its scope. This is very important because even many of the applications and services that we trust these days are not actually secure, and many act beyond their scope. For example, as per Digital Content Next, even the big boy of the tech industry, Google, still collects user location information even after turning off location settings.

So the big question is, when the things can be done without an agent, then why use an agent at all? People say it is for efficiency, and may be they are right. But is this worth the compromise on transparency and security?

Dinesh Harikrishnan

Dinesh is Senior Vice President – Pre-Sales at Akku, where he plays a pivotal role as Product Owner for the Akku platform. Having been part of the product journey from its earliest stages, he has shaped its roadmap, overseen its development, and worked closely with clients to ensure successful implementations. His focus lies in consulting with organizations on their cloud transformation journeys, designing solutions that balance security, compliance, and usability. Over his career, Dinesh has grown through roles in development, consulting, customer success, and pre-sales, giving him a 360-degree view of technology delivery and client engagement. His work has spanned industries from manufacturing and automobiles to edtech, consistently delivering value through innovative solutions and lasting client partnerships.

Share
Published by
Dinesh Harikrishnan
Tags: Agentless architechtureIAM Solutionsidentity and access management solutions
7 years ago

Recent Posts

How Mobile Device Management is Powering the Future of Remote Work

When businesses move to remote operations, teams tend to prioritize fast internet and collaboration tools. However, problems arise when sensitive…

1 month ago

How to Implement Privileged Access Management (PAM) in Cloud and Hybrid Environments

Privileged accounts are an under-recognized center of risk in modern IT. The move to cloud and hybrid environments multiplies the…

2 months ago

Group Policy Object (GPO) Management, and How Akku GPO Manager Simplifies It

How do enterprises keep thousands of users and devices aligned with the same security and compliance standards? The answer often…

3 months ago

IAM Using SSO and Federated Identity Management

Have you ever wondered how large organizations let employees access multiple applications securely without juggling dozens of passwords? The answer…

4 months ago

How to Secure BYOD Devices in a Hybrid Workplace Using Akku Mobile Device Manager

Are your employees’ personal devices putting your organization’s data at risk? With hybrid work becoming the norm, people are accessing…

4 months ago

Group Policy Object (GPO) Management: What It Is and Why Modern Enterprises Need It

How do enterprises ensure that thousands of users and devices follow the same security rules and IT policies without manual…

4 months ago