Identity Federation allows for a single identity to be used across multiple organizations or services, often through protocols like SAML or OAuth, enabling users to authenticate seamlessly without needing separate credentials for each organization.
MFA requires two or more forms of authentication to verify a user's identity. Using a password along with a code sent via SMS is a typical example of MFA, combining something you know (password) with something you have (the phone).
A directory service (such as LDAP or Active Directory) is used to store, organize, and manage identity-related information, such as user credentials, roles, and access permissions, in an IAM framework. It is crucial for authentication and authorization processes.
SSO allows users to authenticate once and gain access to various systems and applications without needing to re-enter credentials. It relies on a centralized directory to authenticate and manage access across multiple platforms.
RBAC ensures that access to systems and resources is granted based on a user's role within the organization. Users are assigned roles, and each role has specific permissions, limiting access to only what is necessary for their duties.
