Centrify and Sencha Space – Secure Enterprise Mobility Made Simple!

BYOD is a fact of life. And that’s a VERY GOOD thing!  BYOD makes teams more agile and employees more productive and happier too. A recent survey showed that 78% of employees access work-related files and applications from personal devices and 61% of respondents said they were happier in their jobs and more productive when they could use their self-chosen devices and cloud-based tools. Yet nearly 40% stated that restrictive IT policies affected their efficiency and ability to problem-solve. But balancing convenience with security is no easy task. Fortunately, Sencha and Centrify offer a new set of tools which combine terrific user experience for employees, while giving IT a high level of visibility and control over employee-owned devices and mobile applications.

So today, I will explain what Sencha Space provides, what Centrify for SaaS provides, and later go into how both the solutions can be used for managing application deployment and unified identity management to simplify and reduce the risk of application, data, and user mobility.

What is Sencha Space:

Sencha makes web standards-based products that empower developers to create amazing cross-browser applications using HTML5-based app development tools. To run these HTML5-based apps Sencha provides Sencha Space which is an advanced platform for securely deploying mobile apps and delivering a consistent, elegant, mobile user experience to end-users. Users will have access to these applications and data regardless of their mobile platform or location. More information can be found here.

What is Centrify for SaaS:

Centrify User Suite, SaaS Edition (Centrify SaaS Edition), uniquely integrates single sign-on (SSO) for SaaS applications with user-centric mobile security management. With Centrify’s cloud-based service, you can quickly provide end-users with single sign-on to cloud-based apps such as Microsoft Office 365 (and thousands of others). Centrify takes a unique approach to SaaS security and single sign-on by enabling you to use Microsoft Active Directory to centrally manage user authentication to SaaS applications without replicating Active Directory in the cloud. Visit Centrify for SaaS for more details.

Combined Solution:

With the combined solution, the IT administrator of an organization can provide their users access to enterprise applications whether they are SaaS or on-prem via Sencha Space. End user authentication itself into Sencha Space is provided by Centrify for SaaS. Voila – now there is no MDM solution required. That should address end user concern in the BYOD scenario and IT can also be relieved as users are required to use Active Directory credentials into Sencha Space to gain access to applications. Another advantage delivered is that end users can get SSO from the Sencha Space client to any of the SaaS applications which has support for the SAML protocol.

For reference, here is the simple architecture diagram for the combined solution to help visualize, and an overview on the process to configure Sencha Space for SSO via Centrify Identity Provider (IdP):

  1. Centrify Sencha SSO for SaaS appsSign up for Centrify for SaaS service. Centrify provides SSO for up to 3 applications for FREE.
  2. Sign up for Sencha Space service.
  3. Next login to Centrify Cloud Manager. Add Sencha Space application for your tenant and download the Centrify Identity Provider (IdP) Certificate.
  4. Log in to Sencha Space admin portal. To establish a trusted connection between Sencha Space and Centrify IdP, you need to upload the certificate from step 3 into the settings -> authentication -> certificate field.
  5. In the Centrify admin portal, you can configure any enterprise applications which require SSO, e.g., Office 365, Salesforce, Concur, Box, DropBox or any on-prem application. (Individual help on these applications is provided by Centrify).
  6. Once configured, get the application URL from the Centrify admin portal and create an application in the Sencha Space admin portal with that link.
  7. Now end-users are set to use the service. Users can install Sencha Space from App Store by entering the organization URL from step 2.
  8. On the login screen, users can enter their Active Directory credentials.
  9. On successful login, users see the list of applications approved by IT to use.
  10. User gets SSO to any of the SAML supported SaaS applications (whether they are cloud or on-prem) which are protected by Centrify IdP.

Webinar:

Watch the previously recorded webinar on this problem and how the combined solution addresses the issue. Also there is live demo of the solution starting at 44.05 marker.

Next steps: