An IdP manages, tracks, and stores identities for an organization. It’s increasingly common for IdPs to be cloud-based, meaning they’re hosted in the cloud instead of being configured on a local machine or server, but IdPs exist in both cloud and local formats.

At their core, IdPs answer a very important question. I’m going to bring in my good friend Dwayne Johnson to offer some elucidation on this critical question:

_{Dwayne Johnson asks an important question that IdPs are uniquely suited to answer}

IdPs serve as the center of someone’s digital footprint within an organization. Many companies use IdPs to manage access to resources, apps, and to make sure that their teams have the correct level of access.

One of the most common places we’ll see an IdP is right in our emails! When you sign into your email, you’ll probably have an account that’s unique to you (or at least, you should). When you sign into your account, that account is managed by your org’s IdP. Important information like your username, password, name, department, etc. is centrally managed and tracked by your IdP.

Some examples of IdPs out in the wild include JumpCloud, Okta, Microsoft Entra, and Active Directory.

Why are IdPs so important?

IdPs serve the critical purpose of enhancing accountability and security for an organization. Without IdPs, an organization’s structure can quickly fall apart.

IdPs Increase Accountability

Without knowing who’s who, or who’s doing what, any endeavor will very quickly fall apart. This is a truth that’s been relevant since ancient times, and will remain relevant far into the future, when we begin to explore strange new worlds, seek out new life and new civilizations, and boldly go where no one has gone before.

IdPs ensure that organizations are able to know who’s doing what. Who sent a specific email? Who created that amazing presentation? WHO CLICKED ON THAT PHISHING EMAIL!?, who’s using this computer? etc.

_{Spock understands that accountability is incredibly important to a healthy organization}

IdPs Increase Security

Naturally, a strong, properly configured IdP massively increases the security of an organization. Knowing who’s doing what allows you to secure resources by ensuring only those who should access a resource can access that resource.

One of the ways IdPs increase security by functioning as an access control system. They govern access and permissions for files, mailboxes, apps, and any conceivable system that they can connect to (which is a lot. Most companies aren’t using their IdPs to their full capacity). They reduce the risk of unauthorized access, and some can even be used to automatically grand and revoke permissions.

In short, IdPs act a little like the Doors of Durin: They make sure that only those who should have access have it.

_{The Doors of Durin only opened after Gandalf provided adequate authentication; not a moment sooner!}

Yes I'm aware that Khazad-dûm fell to to the Balrog in T.A 1980, and that it took the Dwarves many generations to eventually reclaim their realm during the Fourth Age. However, I don't want this to detract from the effectiveness of the Doors of Durin, and how they continued to guard one of the entrances to Moria long after corrupted Maiar, Goblins, and Trolls took over its prestigious halls.

Gotcha, IdPs are pretty cool. Now what?

Even if you just use the most basic Google Workspace or Office 365 licensing, you’re already using an IdP! The great news is that you’re probably already benefitting from many of the features your IdP provides. The next step is to see what you can do to get even more value and security from your IdP.

Some of those steps can be:

1. Connecting your other apps and systems to your IdP

2. Enabling features that you already have access to

3. Configuring and automating access controls

If you’ve gotten to the end of this article and want to know more about how you can start using your IdP to its full potential, feel free to get in touch with us! We’re always more than happy to help out and see what you can do to get more value out of the systems you’re already paying for.