AAAI-14

For customers not using SSO, does your application support directory integration for user accounts?

Explanation

This question is asking whether your application can integrate with directory services (like Microsoft Active Directory, LDAP, etc.) for user account management when Single Sign-On (SSO) is not being used. Directory integration allows organizations to manage user accounts centrally in their existing directory service rather than maintaining separate user accounts in each application. This provides several benefits: 1. Centralized user management: When users join or leave an organization, their access can be granted or revoked in one place 2. Consistent password policies: The organization's password requirements are applied uniformly 3. Reduced administrative overhead: No need to manage separate user databases for each application 4. Better security: Faster deprovisioning of access when employees leave The security assessment is asking this because directory integration is considered a security best practice. Without it, organizations face challenges like: - Orphaned accounts when users leave the organization - Inconsistent password policies across applications - Manual user management processes that are error-prone - Difficulty maintaining compliance with access control requirements When answering this question, you should clearly state whether your application supports directory integration, which specific directory services you support (e.g., Microsoft Active Directory, Azure AD, LDAP, Okta, etc.), and briefly explain how the integration works.

Example Responses

Example Response 1

Yes, our application supports directory integration for user accounts We provide integration with Microsoft Active Directory, Azure AD, and LDAP This allows customers to manage user accounts, authentication, and authorization through their existing directory services Our application synchronizes with these directory services to create, update, and deactivate user accounts automatically based on changes in the customer's directory This ensures consistent access control and simplifies user management for our customers.

Example Response 2

Yes, our application supports multiple directory integration options for user account management We offer native connectors for Microsoft Active Directory, LDAP, Azure AD, and Google Workspace Our directory synchronization runs every 30 minutes to ensure user account changes are reflected promptly in our application Additionally, we support just-in-time (JIT) provisioning where user accounts can be automatically created upon first login based on directory information Customers can configure attribute mapping to control how directory information is used within our application.

Example Response 3

No, our application currently does not support directory integration for user accounts We maintain our own user database where accounts must be manually created and managed through our administrative interface While we recognize the benefits of directory integration and have it on our product roadmap for implementation within the next 6 months, we currently mitigate related risks by providing API endpoints that allow customers to automate user provisioning and deprovisioning through custom scripts or third-party identity management tools We also support bulk user import/export via CSV files to simplify account management.

Context

Tab
Product
Category
Authentication, Authorization, and Account Management

ResponseHub is the product I wish I had when I was a CTO

Previously I was co-founder and CTO of Progression, a VC backed HR-tech startup used by some of the biggest names in tech.

As our sales grew, security questionnaires quickly became one of my biggest pain-points. They were confusing, hard to delegate and arrived like London busses - 3 at a time!

I'm building ResponseHub so that other teams don't have to go through this. Leave the security questionnaires to us so you can get back to closing deals, shipping product and building your team.

Signature
Neil Cameron
Founder, ResponseHub
Neil Cameron