WSO2Con2024 - Organization Management: The Revolution in B2B CIAM
wso2.org
252 views
25 slides
May 09, 2024
Slide 1 of 25
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
About This Presentation
WSO2Con2024 - Organization Management: The Revolution in B2B CIAM
Slide Content
Organization Management
The Revolution in B2B CIAM
Johann Dilantha Nallathamby
Head of Solutions Architecture for IAM
WSO2
The Revolution in B2B CIAM
Johann Dilantha Nallathamby
Head of Solutions Architecture for IAM
WSO2
B2B CIAM
B2B CIAM refers to a collection of
capabilities that helps you transform
how you secure and streamline users’
access to your B2B SaaS applications
effectively and efficiently from third
parties such as enterprise customers
and channel partners such as dealers,
distributors, resellers, vendors, etc.
2
B2B CIAM refers to a collection of
capabilities that helps you transform
how you secure and streamline users’
access to your B2B SaaS applications
effectively and efficiently from third
parties such as enterprise customers
and channel partners such as dealers,
distributors, resellers, vendors, etc.
2
3
4
Challenges in Securing Access to B2B SaaS Applications
1 Onboarding customers and partners
2 Reducing friction in customer access
3 Supporting diverse GTM models
4 Appointing designated custodians
5 Regulatory compliance
6 Reducing operational costs
7 Increasing developer productivity
Challenges in Securing Access to B2B SaaS Applications
1 Onboarding customers and partners
2 Reducing friction in customer access
3 Supporting diverse GTM models
4 Appointing designated custodians
5 Regulatory compliance
6 Reducing operational costs
7 Increasing developer productivity
Foundational Capabilities to Make Your
B2B SaaS Application a Winner
B2B SaaS Application a Winner
Digitally transform
processes
6
Empower
developers
Enhance customer
experiences
processes
6
Empower
developers
Enhance customer
experiences
Empower Developers
Offering a “single sign-on”
experience for your consumers,
and a unified IAM development
experience for your developers
throughout your application
portfolio
8
Unified customer-centric
experiences
Application Application
Organization
Application-centric
Users
Groups
Roles
Policies
Connections
Users
Groups
Roles
Connections
Policies
Application Application
Organization
Organization-centric
Users
Groups
Roles
Roles
Roles
Policies
Policies
Policies
Connections
experience for your consumers,
and a unified IAM development
experience for your developers
throughout your application
portfolio
8
Unified customer-centric
experiences
Application Application
Organization
Application-centric
Users
Groups
Roles
Policies
Connections
Users
Groups
Roles
Connections
Policies
Application Application
Organization
Organization-centric
Users
Groups
Roles
Roles
Roles
Policies
Policies
Policies
Connections
9
Hierarchical organization management
Built-in tenancy for logical compartmentalization
of each enterprise customer and/or partner for
customization and governance.
Reseller x
SaaS Provider
Reseller y
Customer e Customer f Customer gCustomer h
SaaS Provider
Customer a Customer b Customer d
Customer d - NA Customer d - EU
SaaS Provider
Customer a Customer b Customer c
Hierarchical organization management
Built-in tenancy for logical compartmentalization
of each enterprise customer and/or partner for
customization and governance.
Reseller x
SaaS Provider
Reseller y
Customer e Customer f Customer gCustomer h
SaaS Provider
Customer a Customer b Customer d
Customer d - NA Customer d - EU
SaaS Provider
Customer a Customer b Customer c
10
Mandatory access delegation
Designate users and brokers to act on
behalf of customers through mandatory
access delegations.
Delegated
access
Mandatory
delegation
Mandatory access delegation
Designate users and brokers to act on
behalf of customers through mandatory
access delegations.
Delegated
access
Mandatory
delegation
11
B2B Ecosystems
Build ecosystems where providers
and consumers can digitally
collaborate
Consume
Provider
Consumer
B2B
Ecosystem
Consumer
Resources
Provide
B2B Ecosystems
Build ecosystems where providers
and consumers can digitally
collaborate
Consume
Provider
Consumer
B2B
Ecosystem
Consumer
Resources
Provide
12
Tooling
Visual/low-code
editors, templated
workflows/integrations,
SDKs and CI/CD that
increase developer and
devops productivity
Tooling
Visual/low-code
editors, templated
workflows/integrations,
SDKs and CI/CD that
increase developer and
devops productivity
Enhance Customer
Experiences
Experiences
14
Delegated user lifecycle
management
Onboard and manage their own
sub-tenants and users.
Platform Admin
DigiOps
create employee
account
Employees
Customer Care
SaaS Provider
user mgt
privileges
Delegated user lifecycle
management
Onboard and manage their own
sub-tenants and users.
Platform Admin
DigiOps
create employee
account
Employees
Customer Care
SaaS Provider
user mgt
privileges
15
Platform Admin
Team lead
Employees
Customer Care
SaaS Provider
Admin privileges
assign role
DigiOps
entitlements
mgt privileges
Delegated entitlements
management
Manage their own users’
entitlements through roles for
applications and APIs.
Platform Admin
Team lead
Employees
Customer Care
SaaS Provider
Admin privileges
assign role
DigiOps
entitlements
mgt privileges
Delegated entitlements
management
Manage their own users’
entitlements through roles for
applications and APIs.
16
Discretionary access delegation
Invite users to act on behalf of
customers.
Invite
Delegated
access
Discretionary access delegation
Invite users to act on behalf of
customers.
Invite
Delegated
access
17
B2B collaboration
Collaborate with just the right
levels of access
Collaboration
Invite
B2B collaboration
Collaborate with just the right
levels of access
Collaboration
Invite
18
B2B SaaS Provider
Employee
Customer
Admin
Enterprise SSO UN/PW Passwordless
Customized log-in
Variety of authentication
options for SSO, social
logins, and MFA, while
governing the “level of
assurance” for each
application
Employee
Customer
Admin
Employee
Customer
Admin
B2B SaaS Provider
Employee
Customer
Admin
Enterprise SSO UN/PW Passwordless
Customized log-in
Variety of authentication
options for SSO, social
logins, and MFA, while
governing the “level of
assurance” for each
application
Employee
Customer
Admin
Employee
Customer
Admin
19
Branding
Shape the desired
appearance at every
consumer touchpoint,
including log-in,
registration, account
recovery, emails, and
URLs, with zero
development effort
Branding
Shape the desired
appearance at every
consumer touchpoint,
including log-in,
registration, account
recovery, emails, and
URLs, with zero
development effort
Digitally transform
Processes
Processes
Customer
admin
SaaS Provider
Customer aCustomer b
Customer
Registration
Portal
Self-registration
CRM
Customer admin
Customer
SaaS Provider
Customer a Customer b
CRM
Registration
API
Account Manager
Sales-led
onboarding
Integrations
Transforming internal processes
by integrating with systems such
as CRM, subscription services,
marketing automation, and CDPs
21
Broker3rd-party
onboarding
client
SaaS Provider
Customer a Customer b
CRM
Registration API
Channels-led
onboarding
Customer admin
Customer
admin
SaaS Provider
Customer aCustomer b
Customer
Registration
Portal
Self-registration
CRM
Customer admin
Customer
SaaS Provider
Customer a Customer b
CRM
Registration
API
Account Manager
Sales-led
onboarding
Integrations
Transforming internal processes
by integrating with systems such
as CRM, subscription services,
marketing automation, and CDPs
21
Broker3rd-party
onboarding
client
SaaS Provider
Customer a Customer b
CRM
Registration API
Channels-led
onboarding
Customer admin
Customer
22
Customer bCustomer a
Customer
Admin
Employee
B2B SaaS Application
Customer
Admin
Employee
Customer c
Employee
Customer
Admin
Application subscriptions
Govern access to your
applications and API portfolio by
organizations.
Customer bCustomer a
Customer
Admin
Employee
B2B SaaS Application
Customer
Admin
Employee
Customer c
Employee
Customer
Admin
Application subscriptions
Govern access to your
applications and API portfolio by
organizations.
23
Audits and Insights
Keep a bird’s eye view of all accesses
through audits and insights across all
your applications and customers from
a single place
Audits and Insights
Keep a bird’s eye view of all accesses
through audits and insights across all
your applications and customers from
a single place
PAM
24
IGA
B2C B2B B2E APIs
WAM
●Self-registration and
social-login
●Identity verification
●Account linking
●Progressive profiling
●Passwordless, OTP and
Adaptive MFA
●Consent-based
authorization
●Branding and
internationalization
●Login and registration
insights
●Distinct tenancies per
organization
●Flexible organizational
hierarchy design
●Enterprise login
●Customizable login
experiences for
organizations
●Delegated
administration
●B2B Collaboration
●User invites and bulk
onboarding
●BYO-directory/Virtual
directory
●Just-in-time access
provisioning
●Single sign-on
●X509, RSA, IWA and
Adaptive MFA
●Role-based authorization
●OAuth 2.0/OIDC
compliance
●Consent-, role- and
context-based
authorization
●Pre-integrated API
gateways
IAM Landscape
Access Management
24
IGA
B2C B2B B2E APIs
WAM
●Self-registration and
social-login
●Identity verification
●Account linking
●Progressive profiling
●Passwordless, OTP and
Adaptive MFA
●Consent-based
authorization
●Branding and
internationalization
●Login and registration
insights
●Distinct tenancies per
organization
●Flexible organizational
hierarchy design
●Enterprise login
●Customizable login
experiences for
organizations
●Delegated
administration
●B2B Collaboration
●User invites and bulk
onboarding
●BYO-directory/Virtual
directory
●Just-in-time access
provisioning
●Single sign-on
●X509, RSA, IWA and
Adaptive MFA
●Role-based authorization
●OAuth 2.0/OIDC
compliance
●Consent-, role- and
context-based
authorization
●Pre-integrated API
gateways
IAM Landscape
Access Management
Question Time!
25
25
Tags
Categories
BusinessDownload
Download Slideshow Get the original presentation fileQuick Actions
Statistics
- Views 252
- Slides 25
- Age 586 days
Related Slideshows
1
DTI BPI Pivot Small Business - BUSINESS START UP PLAN
MeljunCortes
42 views
1
CATHOLIC EDUCATIONAL Corporate Responsibilities
MeljunCortes
41 views
11
Karin Schaupp – Evocation; lançamento: 2000
alfeuRIO
41 views
10
Pillars of Biblical Oneness in the Book of Acts
JanParon
36 views
31
7-10. STP + Branding and Product & Services Strategies.pptx
itsyash298
40 views
44
Business Legislation PPT - UNIT 1 jimllpkggg
slogeshk98
42 views