As I am in the early phases of starting my company, I have been researching my options regarding what products and services I will utilize. As I will be the only employee for a bit, with my wife handling branding/design, I don’t necessarily need many of the expensive software suites that many MSP and MSSP’s use. Earlier today, I just happened to be playing around in my newly-created UniFi home network and stumbled upon UniFi’s new Identity application. As I am slowly replacing much of my existing network with UniFi hardware, I figured this would a wonderful tool to use, and due to my small company size, I can use the new application for free, at least until I get over five users. So, as with anything I am learning, I figured I would write a bit about Identity, covering what it is, what it can do, its limitations, and even how to set everything up.

Introduction:

UniFi’s new ‘UniFi Identity’ service is a comprehensive identity management solution that caters to both the free and enterprise editions, offering a range of features designed to enhance network security and streamline user management. With its intuitive interface and robust capabilities, UniFi Identity aims to simplify the complexities of identity management for businesses of all sizes.

What is UniFi Identity?

UniFi Identity is a centralized identity management service provided by UniFi, designed to offer seamless integration with UniFi networking hardware; it enables organizations to efficiently manage user identities, authentication, and authorization, promoting a secure and user-friendly network environment.

Key Features and Capabilities:

Helpdesk: Something I didn’t expect to see was a helpdesk area for creating, tracking, and solving tickets; I haven’t played around with it yet too much, but even if it is ‘just ok’, I figure the free part would make it the right choice for me!

User Authentication and Authorization: UniFi Identity provides a centralized platform for managing user authentication and authorization, ensuring that only authorized individuals have access to specific resources.

Single Sign-On (SSO): Both the free and enterprise editions support Single Sign-On, allowing users to log in once and access multiple services and applications without the need to repeatedly enter credentials.

Role-Based Access Control (RBAC): The service facilitates granular control over user permissions with RBAC, enabling administrators to assign roles based on job responsibilities and restrict access accordingly.

Multi-Factor Authentication (MFA): UniFi Identity enhances security with MFA, requiring users to provide multiple forms of identification before gaining access, adding an extra layer of protection against unauthorized access.

Guest Network Management: The service simplifies guest network management, allowing for easy onboarding and secure access for visitors without compromising the integrity of the primary network.

Touchless Door Access: Unlock doors simply with your phone.

One-Click Wi-Fi: Instantly connect to your organization’s Wi-Fi, without entering credentials.

One-Click VPN: Remotely access your organization’s network, without entering credentials.

Effortless EV Charging: Power up your electric vehicles with ease.

Workflows and Approvals: What really amazed me Identity’s Workflow and Approvals area. One can easily request/approve time off, track users who are working from home, centralize all purchase requests, and even manage overtime. As a new company starting out, getting all of this for free is rather nice!

Free Edition vs. Enterprise Edition:

Free Edition: The free edition of UniFi Identity provides essential identity management features suitable for small businesses; it includes basic user authentication, SSO, and limited RBAC functionality, making it an excellent starting point for organizations with modest requirements.

Enterprise Edition: For larger enterprises with more complex user management needs, the enterprise edition offers advanced features such as enhanced RBAC, detailed reporting, and scalability to accommodate larger user bases. The Enterprise edition is well-suited for businesses with more intricate identity management requirements.

Limitations:

Scalability: The free edition may have limitations in handling large-scale deployments, making it more suitable for small to medium-sized enterprises. The enterprise edition addresses scalability concerns and is better equipped to handle expansive user bases.

Advanced Reporting: Some users may find that the reporting capabilities in the free edition are basic, while the enterprise edition offers more advanced reporting features for in-depth analysis.

Effective Setup Guide:

Setting up UniFi Identity involves several key steps:

Subscription and Licensing: Choose the appropriate edition (free or enterprise) based on your organization’s needs. Subscribe to the service and obtain the necessary licenses.

I would recommend starting off with the free version on a trial-basis, then switch to Enterprise as your company grows.

Integration with UniFi Hardware: Ensure that your UniFi networking hardware is compatible with UniFi Identity. Update firmware and configure devices to seamlessly integrate with the identity service.

Not all UniFi devices allows for all of Identity’s features to be used. For example, as I only use a Cloud Key Gen2 at home, I

Configuration: Configure user authentication settings, define roles and permissions, and set up any additional security features such as MFA.

User Onboarding: Add users to the system, assign roles, and configure SSO settings. Ensure a smooth onboarding process for both employees and guests.

Testing and Optimization: Conduct thorough testing to ensure that the identity service is functioning correctly. Optimize settings and configurations based on your organization’s specific requirements.

Conclusion:

UniFi Identity is a powerful identity management solution that caters to businesses of varying sizes. Whether opting for the free edition or the enterprise edition, organizations can benefit from streamlined user management, enhanced security features, and seamless integration with UniFi networking hardware. While there are some limitations, particularly in the free edition’s scalability, UniFi Identity provides a user-friendly and effective solution for organizations looking to bolster their network security and simplify identity management. Following the setup guide ensures a successful implementation, allowing businesses to leverage the full potential of UniFi Identity.

While I have just began to play around with Identity, I can see how it already can replace a few different software products I was thinking about purchasing, while costing nothing to me. Overall, Identity is merely the latest UniFi offering that further cemented my love for the company.