Identity Management

Identity Management

Client Problem

All companies need to guard systems from unauthorized access, but the stakes are higher for missionary organizations. The personal safety of some employees depend on it. An organization with a large conglomerate of entities and a global footprint required staff in some regions to operate autonomously, without publicly associating with the organization. Consequently, for years, U.S. staff communicated sporadically with some international employees via public email accounts, virtual private networks, and public cloud storage. To improve efficiency while protecting workers’ identities, the organization wanted to build a global, generically branded portal to give all staff protected access to email and other applications. The chief information officer of the organization, says, It’s important that we keep information about individuals and our organization confidential, so security is always our first objective. To reduce complexity, we wanted centralized ID services. And to help with regulatory compliance, we needed to consolidate and digitize our financial workflows including expense reports.

Why They Engaged Us

It was important to build a solution with fewer vendors so we could reduce technical complexity and the time spent on maintenance. Engineers configured several web pages for facilitating access to the corporate portal, which is managed by a proxy server running CAM. In some regions, the URL and the portal login page are not related to the organization. Engineers can also configure the solution to proxy portal access from a user’s personal web address. From proxy servers, CAM manages authentication by comparing users’ credentials with Active Directory. Once users’ identities are verified, they can access applications on the portal such as Microsoft Office 365 and a budgeting system.

Solution

Today, 70 percent of employees use the solution. While the portal is still being deployed, it is obvious how it will save time because everyone is looking at the same data. There is a digital record of expenses and payments, which we need for financial audits. Staff members no longer have to come up with their own email services or methods of file sharing. To ensure that only authorized people gain portal access, the organization is adding second-factor authentication. There is a choice of hardware and software tokens for secondary authentication. This is important because some people work in areas without phone coverage. We can also configure Defender to require two-factor authentication for only specific users and applications. If employees forget their password, they complete and submit a form on the portal login page, and a system administrator is able to reset it. Boosting efficiency while keeping staff safe is saving time, and they can now use the same applications regardless of where they’re working. Providing centralized access to company information and IT tools is a significant change for us. Now, we can consolidate our workflows, increase collaboration, and improve financial management, because we have the flexible security tools we need from One Identity to protect our information and the physical identities of our staff.

Identity Management

Client Problem

Why They Engaged Us

Solution

OUR ENTERPRISE

PARTNERS & AFFILIATES

SECURITY

DOMAINS

SERVICES

PRODUCTS