Endpoint

2/26/2013
10:18 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

OneLogin Announces 12 Millionth Licensed User

Cloud identity management provider reaches 700 customers

SAN FRANCISCO--(BUSINESS WIRE)--RSA CONFERENCE BOOTH #2359 – OneLogin, the innovator in identity management, today announced its 12 millionth licensed user, a major milestone in the company's explosive growth in the cloud-based IAM market that now includes 700 enterprise customers in 35 countries, including AAA, Gensler, Netflix, News International, Pandora, Steelcase and PBS.

Since last year's RSA show, at which OneLogin announced the first and still-only IAM vendor with its own Mobile One-Time Password (OTP) App with Push, OneLogin has continued on a path of innovation and growth, including:

First-ever iPad app for identity management;

First-ever Federated Cloud Search IAM product that enables secure, real-time search across public cloud applications such as Box, Google Apps, Salesforce, Yammer and Zendesk;

Pre-integration with 2,800 cloud apps, more than any other IAM vendor;

Open Source SAML Toolkits now used by over 70 SaaS vendors to make their apps more secure; and

Over 30 app vendors now participating in OneLogin's Cloud ISV Partner Program.

On the heels of the launch of its UK operations and recently ranked highest in Network World Magazine's review of tools to automate the logins of enterprise applications and improve password complexity, OneLogin's entirely cloud-based identity management service is eclipsing legacy vendors like IBM, Computer Associates, Oracle and Microsoft.

OneLogin continues to establish its dominance in a fast growing category of IAM called IDaaS (identity management as a service). According to Gartner, by the end of 2014, IDaaS will account for 25% of all new IAM sales, compared with less than 5% in 2012.* Key factors driving enterprises to consider IDaaS include the need to provide stronger authentication into an increasing number of SaaS applications, many of which are often driven by lines of business.

"With OneLogin, we can roll out different applications to different groups of people while adhering to SOX controls by maintaining password expiration policies to meet compliance goals," said Mike Kail, vice president of IT operations with Netflix. "Account provisioning and deprovisioning is automatic, and we have peace of mind that the wrong people can't access our sensitive information. With OneLogin's one-stop-shop approach, we've dramatically improved data and application security here at Netflix, while providing the freedom our employees expect and deserve."

"This year will be the tipping point in cloud adoption and as organizations continue to migrate to the cloud for their IT requirements, products like ours will continue to be key in ensuring the safety of and ease of access to information," said Thomas Pedersen, chief executive officer of OneLogin. "This evolution means organizations must quickly address the inherent risks in practices like using unsanctioned apps and sharing passwords on sticky notes."

In a recent survey conducted by OneLogin of 200 IT and business professionals, 78% of respondents said they plan to increase the number of cloud apps in their organizations this year. At the same time, 71% admit they are using cloud apps that have not been sanctioned by their IT departments.

OneLogin provides a cloud-based IAM product that offers simple single sign-on (SSO), making it easier for companies to secure and manage access to web applications. As part of the OneLogin product, the company also handles IAM challenges like directory integration, provisioning and strong authentication. This approach helps companies overcome some of the time and cost hurdles that have stopped IAM projects in their tracks, or led to significant additional costs being incurred.

Relevant Links:

To learn more about OneLogin's Single Sign-On offering, visit here (http://www.onelogin.com/product/single-sign-on/)

To learn more about the industry's first Federated Cloud Search application, visit here (www.onelogin.com/product/federated-cloud-search)

To learn more about OneLogin's iPad app, visit here (www.onelogin.com/product/mobile)

To learn more about OneLogin Directory Integration, visit here (http://www.onelogin.com/product/directory-integration/)

To learn more about OneLogin's open-source SAML Toolkits, visit here (http://www.onelogin.com/resources/saml-toolkits/)

For complete results of the 2013 State of Cloud Application Access Survey, visit here (http://www.onelogin.com/wp-content/images/2013_Cloud_Application_Access_Survey.pdf)

*A Guide to Making the Right Choices in the Expanding IDaaS Market, 20 April 2012

About OneLogin

OneLogin is the innovator in enterprise identity management and provides the industry's most comprehensive solution for managing user identities, both in the cloud and behind the firewall. Unique capabilities like Cloud Search and OneLogin for iPad break down SaaS data silos and increase productivity. OneLogin's cloud identity platform comes complete with secure single sign-on for web, mobile and iPad, federated search, user provisioning, deep directory integration with real-time user sync, out-of-band multi-factor authentication, VPN integration and compliance reporting. OneLogin's catalog contains thousands of pre-integrated applications, including Asure Software, Coupa, BMC Software, Box, Clarizen, DocuSign, Egnyte, EchoSign, Google Apps, Innotas, LotusLive, NetSuite, Microsoft Office 365, Oracle CRM On-Demand, Parature, Salesforce.com, SuccessFactors, WebEx, Workday, Yammer, ServiceNow, Zscaler and Zendesk. OneLogin, Inc. is backed by Charles River Ventures. Free Trial Available at: www.onelogin.com | Twitter: @onelogin.

- See more at: http://www.rsaconference.com/events/2013/usa/for-media/sponsor-news.htm#sthash.p76Un46G.dpuf

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Ex-NSA Director Rogers: Insider Threat Prevention a 'Contract'
Kelly Jackson Higgins, Executive Editor at Dark Reading,  3/26/2019
BEC Scammer Pleads Guilty
Dark Reading Staff 3/20/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
5 Emerging Cyber Threats to Watch for in 2019
Online attackers are constantly developing new, innovative ways to break into the enterprise. This Dark Reading Tech Digest gives an in-depth look at five emerging attack trends and exploits your security team should look out for, along with helpful recommendations on how you can prevent your organization from falling victim.
Flash Poll
The State of Cyber Security Incident Response
The State of Cyber Security Incident Response
Organizations are responding to new threats with new processes for detecting and mitigating them. Here's a look at how the discipline of incident response is evolving.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-9053
PUBLISHED: 2019-03-26
An issue was discovered in CMS Made Simple 2.2.8. It is possible with the News module, through a crafted URL, to achieve unauthenticated blind time-based SQL injection via the m1_idlist parameter.
CVE-2019-9055
PUBLISHED: 2019-03-26
An issue was discovered in CMS Made Simple 2.2.8. In the module DesignManager (in the files action.admin_bulk_css.php and action.admin_bulk_template.php), with an unprivileged user with Designer permission, it is possible reach an unserialize call with a crafted value in the m1_allparms parameter, a...
CVE-2019-9057
PUBLISHED: 2019-03-26
An issue was discovered in CMS Made Simple 2.2.8. In the module FilePicker, it is possible to reach an unserialize call with an untrusted parameter, and achieve authenticated object injection.
CVE-2019-9058
PUBLISHED: 2019-03-26
An issue was discovered in CMS Made Simple 2.2.8. In the administrator page admin/changegroupperm.php, it is possible to send a crafted value in the sel_groups parameter that leads to authenticated object injection.
CVE-2019-9059
PUBLISHED: 2019-03-26
An issue was discovered in CMS Made Simple 2.2.8. It is possible, with an administrator account, to achieve command injection by modifying the path of the e-mail executable in Mail Settings, setting "sendmail" in the "Mailer" option, and launching the "Forgot your password&q...