AWS Directory Service

Category:
IDaaS
Score:
75
AWS Directory Service

Amazon Web Services provides information technology infrastructure services to businesses in the form of web services.

Gartner Score:
The Forrester Wave™:
30
Seattle, WA, USA
10,000 +
Total Funding:
NASDAQ:AMZN Over $ 1B
Founded year
2012
ms.png
Alternative Solutions
OKTA
Microsoft Online
Ping Identity
OneLogin
77
77
75
75
Access
82
Federated Identity Management
OAuth support
OpenID support
SAML support
100
false
false
true
Brute-force Protection
Protection from multiple failed logins
Utilizes CAPTCHA
Multi-factor Authentication
Multi-factor authentication - Security Questions
Multi-factor authentication via Biometrics
Multi-factor authentication via Mobile App
Multi-factor authentication via Others
Multi-factor authentication via secondary email
Multi-factor authentication via Smartcard
Multi-factor authentication via SMS
Multi-factor authentication via USB Token
100
false
false
100
false
false
true
false
false
true
true
false
Password Quality Rules
Does not save logged in session
Force change of password after some time period
Provides password reset and recovery
Requires minimum password length
Requires strong password format
Access Control
Controls IP range from which login is allowed
Supports device restrictions
Enterprise Identity Integration
Active Directory integration
LDAP integration
Account Protection
Encrypted account credentials
80
false
true
true
true
true
100
true
false
100
true
true
1
Unknown
Administrative
87
Admin Audit Trail
Tracks all administrator activity
Policies
Content security policies
Policy configuration and enforcement
Role Based Access Control
Role based access control
User Audit Trail
Tracks all end-user activity
1
Unknown
100
true
true
1
Unknown
1
Unknown
Business
100
Financial Stability
Type of Company
100
Public
Compliance
45
Compliance Certifications
COBIT
CSA STAR Self-Assessment
FedRAMP High Baseline
FedRAMP Low Baseline
FedRAMP Moderate Baseline
FISMA
GAAP
HIPAA
ISAE-3402
ISO 27001
ISO 27017
ISO 27018
ITAR
NIST SP 800-53
PCI
Privacy Shield (GDPR, CCPA)
Safe Harbor
SOC I type 2
SOC III
SOX
SSAE 16 SOC2 Type II
TRUSTe
45
true
true
false
false
false
false
true
NA
false
true
true
true
false
false
false
Both
false
false
true
Unknown
false
true
Data
82
Data at Rest Encryption
50
Encryption keys in control of the Enterprise
NA
Encrypts data at rest
false
Data in Motion Encryption
50
Does not involve blockchain activities
true
Not at risk to CloudBleed vulnerabilities
true
Not Vulnerable to CRIME
true
Not Vulnerable to DROWN
true
Not Vulnerable to FREAK
true
Not Vulnerable to Logjam
true
Not Vulnerable to OpenSSL Heartbleed defect
true
Not Vulnerable to Poodle SSLv3
true
Not Vulnerable to Poodle TLS
true
SSL Certificate Chain
ds.us-west-2.amazonaws.com
SSL certificate not expired
true
SSL certificate strength
2048 bits or greater
SSL key strength
Less than 256 bits
SSL used for data in motion
true
Supports HTTP2
false
Supports SSLv2
false
Supports SSLv3
false
Supports TLS Secure Renegotiation
true
Supports TLS_FALLBACK_SCSV
false
Supports TLSv1
true
Supports TLSv1_1
true
Supports TLSv1_2
true
Supports TLSv1_3
false
Valid SSL Certificate Name
true
Data Sharing Controls
100
Controls sharing with external users
TRUE
Controls sharing with internal users
true
Data Handling
55
Backup data centers
Unknown
Customer data not analyzed for ad targeting
false
Customer data not analyzed for behavior mining
false
Data not stored on mobile for offline access
NA
Encrypted backup
Unknown
Offline data encrypted or otherwise protected
NA
Provides for backup/export of customer data
false
Requires or stores passwords of 3rd party services
NA
REST API Activity Log Retrieval Method
NA
EST API Activity Log Scope
NA
REST API for Activity Logs
false
.REST API Support
true
Restrict opening files in external apps on mobile
false
HTTP Security Headers
100
HTTP Content-Security-Policy
NA
HTTP Public Key Pinning Extension
NA
HTTP STS
NA
HTTP X-Permitted-Cross-Domain-Policies
NA
HTTP Security Headers.X-Content-Type-Options
NA
X-Frame-Options
NA
X-XSS-Protection
NA
Informational
90
Type of Service
Consumer oriented service
100
false
Enterprise oriented service
true
Type of Clients
Desktop client
Native mobile app
50
false
false
Web based service
true
External Integration
No third party integration
100
true
Service
38
Agreements
100
Provides DPA
TRUE
Provides SLA
true
Hosting Service
100
Data Center Locations
TRUE
Hosting Platform Type
true
Provider if hosted on the public cloud
true
Multi-tenancy Support
100
Separation of Customer Data
TRUE
Disaster Recovery & Business Continuity
100
Data Breach Notification
TRUE
Integration
90
Cloud providers integrations
AWS
AZURE
GOOGLE CLOUD
ALIBABA
ORACE
IBM
TRUE
Cloud Service integrations
NETAPP
OFFICE 365
SALESFORCE
VMWARE
HPE
CISCO
Over alll SaaS integrations score
TRUE
Other Functionalities
eDiscovery
Data archiving score
0
OS migration score
0
RTO score
0
Ransomeware recovery score
0
On-premise integration
false