But what about cases where the user isn't directly related to the decision maker? Doubly so when it's a hard to justify purchase? (I.e. you're not selling bread or IBM machines.)
For example, say, a keyless entry fob for a car. The driver benefits immensely. The CTO of Ford may probably not even entertain a meeting ("Huh, what does he think, locks are bad or something?! What's wrong with a secure lock?")
Does anyone have any suggestions for how to approach such a situation if you developed the fob and now want to sell it?
A great example is remote starters. Same idea. Great for the user, not so much for say Ford. The first places I saw these being installed? Stereo shops would use it as a cross selling feature whenever they were selling something else to a customer. I could be wrong, but it took a few years for the manufacturers to start including remote starters as an add-on. Before then, it was all kinds of other shops selling and installing them.
But its a trench warfare type of deal. You have to get into the hands of the people who can install them, then work your way up to approaching dealerships and larger clients.
I've done this with an anti-theft device. Start small, then build your client base and use that as a springboard to get interest from larger clients.
TFA goes:
Leadership gives approval for purchase
Require me to give you my contact information just to download something. Have sales people blow up my phone and/or email and ignore polite brush-offs. Keep reaching out to me periodically with requests to have a meeting about how you product can help me.
I don't have buying power, but I do have bitching power and your product will wind up getting bad-mouthed by the whole team eventually. And when the engineer asks us for recommendations, guess what we tell him?
Lookin' at you, Veeam, AWS, and Keyence.
Brajeshwar•1h ago
micromacrofoot•1h ago
mooreds•1h ago
tw04•1h ago
There’s a reason they all do it, and it’s because SSO is one of the few features enterprises are almost universally willing to pay for.
thewebguyd•1h ago
The company I work for is in the middle - anything where SSO is gated behind "Enterprise" is not even considered by us. We don't need 90% of the other "features" under the Enterprise plans, and most aren't willing to custom quote us for Basic+SSO.
Withhold it from free versions, sure - but definitely don't lock SSO only behind the most expensive option.
closewith•1h ago
thewebguyd•1h ago
Maybe in 2015 it was an outlier, but SSO is now a non-negotiable and with many of these businesses on M365 business premium, which includes EntraID P2, SSO is now accessible to a large number of companies where it wasn't before. It's no longer some niche enterprise only functionality, it's a bare minimum for business SaaS.
tw04•1h ago
And if you’re trying to negotiate custom, non standard licensing when you’ve only got 300 employees you will likely be a noisy customer in perpetuity.
No offense, that’s just how I’m betting 99% of folks read your response.
codeflo•1h ago
thewebguyd•44m ago
You can have user limits on the non-enterprise plans (Microsoft does this, for example, with Business Premium locked at 300 users or less), or gate other features behind enterprise: Have MFA across the board, but lock conditional access behind enterprise, lock more advanced audit logs & reporting behind enterprise, lock RBAC behind enterprise, or data residency, custom security policies, API limits, etc.
There are numerous other features that are non-negotiable for enterprises to help funnel them into the enterprise plan, while still being able to service medium companies with SSO.
autoexec•51m ago
> "Decouple your security features from your value-added services...If your SSO support is a 10% price hike, you’re not on this list. But these percentage increases are not maintenance costs, they’re revenue generation because you know your customers have no good options."
mooreds•40m ago
There's a number of ways for open source software stacks to make money, but I agree that finding features that companies with money will pay for is a great one.
I think Patio11 said it once, but SSO feels now like HTTPS felt in 2015. Used to be super expensive, but now should be "table stakes".
Other ways open source companies can make money:
- hosting (offers that sweet sweet recurring revenue)
- support (especially SLAs, which pair nicely with hosting)
- other enterprisey features, such as integrating with enterprisey tools (DataDog, SIEM tools)
- other auth features like fine grained authorization (RBAC, ABAC, PBAC) and provisioning (SCIM)
- control planes (I see this with tools like Cerbos and Permit which both offer fine grained authorization execution engines that are free, but charge for the control plane)
- certifications (SOC2, FIPS, HIPAA, PCI). this might not make sense in all cases, it does depend on the tool
- custom feature development (better if this is pulling forward planned development rather than something unplanned)
It's not easy, though.
I wrote more on my personal blog about freemium[0] and open-source[1] business models.
0: https://www.mooreds.com/wordpress/archives/3621
1: https://www.mooreds.com/wordpress/archives/3438
ralferoo•1h ago
Coursera: $399 per u/y -> $49875 per year [7], 12400%
So, I check out the footnote:
[7] Coursera requires a minimum of 125 users to access SSO pricing. As they do not have an Enterprise price listed, this price just scales their lower cost tier up to 125 seats.
Dividing by 125 shows the SSO pricing is $399, so exactly the same as the non-SSO pricing. I fail to see how this is an SSO tax.
It might be that there is an SSO tax as the Enterprise price wasn't available to them, but listing it as 12400% increase seems like a deliberate attempt at deception.
theamk•1h ago
I've used to work in small startup with ~10 people. The owner was always happy to pay for tools to developer productivity. We did not subscribe to Coursera, but in the theoretical case we'd all want to, the pricing would be:
10 users, no SSO: $3999/year
10 users, with SSO: $49875/year
It's an SSO tax, and a super hefty too. We'd probably balk at it and chose the less-secure option instead. And the fact that we'd get extra 116 licenses we had no need for is absolutely irrelevant, there is nothing we can do with it at all.
stronglikedan•1h ago
ezekg•1h ago
apples_oranges•1h ago
ezekg•1h ago
scarface_74•47m ago
ezekg•22m ago
ta1243•5m ago
Even if the original elastic company offers it cheaper, or better, that's a massive hill to climb. Corporations don't care about costs, they care about pieces of paper, or less charitably nice dinners with the sales team.
gcatalfamo•1h ago
It sounds like a trivial question to answer, but it just exposes the level of detachment that exists between who makes the purchase decisions and its users in SME context.
takinola•1h ago
kube-system•34m ago
esafak•46m ago
jagged-chisel•44m ago
esafak•38m ago
etc. There's a laundry list of features enterprises care about, better spelled out in the sibling post.
kube-system•31m ago
You really have to know who you are talking to and their motivations before you know what the right sales angle is.