OneLogin Inc. today extended its cloud-based identity management system to on-premises data centers with OneLogin Access, saying it’s the first company to provide integrated access across cloud and legacy applications in a fully integrated product.

The company competes in a red-hot market to serve the needs of enterprises that use multiple cloud services and want a single, secure point of access. It’s seeking to bridge a gap between legacy single sign-on systems like CA Technologies Inc.’s SiteMinder and Oracle Corp.’s Oracle Access Management, which are rooted in on-premises infrastructure, and the new breed of federated cloud access management systems.

Although the legacy vendors have extended their reach into to the cloud, many customers use discrete, born-in-the-cloud federation services for cloud applications because of their broader reach. With OneLogin Access, “they can take all that duplication out of the environment,” said Chief Marketing Officer Miles Kelly. The company claims to have native login capabilities to more than 4,000 software-as-a-service services.

Competitor Okta Inc. also combines cloud and on-premises access, but OneLogin claimed its approach is more streamlined and doesn’t require the use of third-party products. “It’s all native technology that we’ve built,” Kelly said. OneLogin purchased Cafésoft Inc., developer of an integrated access management system for captive infrastructure, about two years ago.

The extension recognizes that the enterprise world isn’t going all-cloud anytime soon. “Companies are realizing that an all-as-a-service world isn’t reality,” Kelly said. “Up to 90 percent of workloads are still running on-prem behind firewalls that companies have built themselves.”

OneLogin Access uses standard protocols like Security Assertion Markup Language to enable organizations to secure legacy applications with a variety of authentication factors. It also supports adaptive authentication — a form of multifactor authentication that can be configured to correspond with a user’s risk profile —  and built-in security information and event management for real-time event analysis.

Security administrators can modify access privileges across all applications in real time from a single management platform. That platform also extends to networks and devices and can synchronize across user directories using Active Director and Lightweight Directory Access Protocol connectors.

The software is priced at $3 per user per month for internal use and $1 per user per month for external use. OneLogin publishes its full price list here.

Image: Flickr CC