Remove Aqua as they offer SSO for all products at every tier.

robchahin / sso-wall-of-shame

A list of vendors that treat single sign-on as a luxury feature, not a core security requirement.

https://sso.tax

Apache License 2.0

677 stars 303 forks source link

Remove Aqua as they offer SSO for all products at every tier. #406

Closed kenmccann closed 11 months ago

kenmccann commented 1 year ago

The history of Aqua appearing on the list is here: https://github.com/robchahin/sso-wall-of-shame/pull/148

In a nutshell, Aqua acquired CloudSploit, which at the time, may have met the criteria for shaming. However, the CloudSploit AuthN/AuthZ functionality has long since been depricated.

Aqua offers two products:

On-premise software: This has included SSO included in every license since the inception of the company.
SaaS offering: This has also always offered SSO at every license level since its inception, however, previous pricing description made it unclear, whether or not SSO was included (it always was).

Here's the pricing page today. You'll see there's nothing to suggest that SSO is a licensed feature: https://www.aquasec.com/pricing/

If additional proof or details are needed, please let me know. I'm an engineer at Aqua and I've worked extensively on SSO projects.

robchahin commented 11 months ago

I am inclined to remove simply because Aqua has no posted pricing so it's impossible for me to verify. However, I will refute the assertion in the comment here that Aqua has always included SSO at every tier:

https://support.aquasec.com/support/solutions/articles/16000111813-2020-07-21-aqua-cspm-pricing-changes

Team plan: Small teams. Limited-scope cloud native environments. Everything in Developer plus daily cloud scans, 25 users, and basic support. Advanced plan: Larger teams. Larger-scale cloud native environments. Everything in Team plus SAML support, 75 users, better data retention.

kenmccann commented 11 months ago

However, I will refute the assertion in the comment here that Aqua has always included SSO at every tier:

https://support.aquasec.com/support/solutions/articles/16000111813-2020-07-21-aqua-cspm-pricing-changes

Team plan: Small teams. Limited-scope cloud native environments. Everything in Developer plus daily cloud scans, 25 users, and basic support. Advanced plan: Larger teams. Larger-scale cloud native environments. Everything in Team plus SAML support, 75 users, better data retention.

You’re referring to an article that was created by the company, CloudSploit, which was acquired by Aqua Security. The CloudSploit CSPM product was eventually merged into the full Aqua Platform which offers SSO at any price. If you have a license, you get SSO.

I’d be happy to demonstrate if needed, although the change appears to have been merged, so thanks.

robchahin commented 11 months ago

I'll take your word for it, maybe this thread will be useful to someone in the future. Thanks for providing the info.