A Business Continuity Plan for a leading provider of Revenue Cycle Management services
Introduction
With a workforce of over 15,000 employees in India, our client had deployed on-premise Azure Active Directory (AD) to manage and secure accounts and identity across their organization.
However, over the past two years, they have been transitioning from on-prem to remote working for their entire workforce, in a phased approach. This was due to their recognition of the importance of having a well-defined business continuity plan (BCP), and also as a long-term approach, with the objective of reducing seat costs and fixed overheads.
Since the AD setup was located entirely on-premise, transitioning to work-from-home for all employees threw up challenges in terms of authenticating and securing employee identities and their access to the company’s applications and data.
The Akku Effect
Zero
Downtime from On-Premises to Remote Working
over 90%
Savings in Solution Implementation by choosing Akku
Zero
Downtime from On-Premises to Remote Working
over 90%
Savings in Solution Implementation by choosing Akku
Device-based Restriction and MFA for Stronger Security
The suddenness of pandemic-related office closures and the transition to remote working was especially disruptive for businesses without a business continuity plan (BCP) to address such an eventuality. Remote operations were especially challenging for businesses like our client, which operate in domains involving sensitive data, and for whom security was a major concern.
The client needed secure authentication of user identity in order to seamlessly transition to remote identity management. Since the users would no longer be working from the office, it was also important to confirm their identities through the use of device-based restrictions and multi-factor authentication (MFA). The solution to both of these requirements was to deploy a cloud-based Identity and Access Management (IAM) solution.
Implementation Architecture
Seamless Integration
Akku, the robust IAM solution, delivered the required device-based restriction and multi-factor authentication functionality. Akku was integrated with the client’s on-premise Active Directory (AD) through a secure tunnel, allowing it to access permitted user attributes and identity information stored on AD. This in turn enabled users in the organization to make use of their identity records from AD to access applications from anywhere.
This meant that the organization could continue to use their existing and familiar Active Directory for identity management, while eliminating the need to take up complex and expensive migration of the identity management system to the cloud.
The client was offered the option to use the Akku admin console directly and set up the AD connectivity themselves. Alternatively, Akku could provide an endpoint API to sync necessary user information. In either option, the one-time setup was all that was required to enable cloud-based identity management by Akku.
Akku’s Access Management functionality then ensures that it can grant due access to assets only to the specific users who require it.
Security during Remote Access
Akku restricts access to assets only from registered or company-owned
devices,
ensuring that apps and data are not impacted by any malware or security
vulnerabilities on non-authorized devices.
Akku restricts access to assets only from registered or company-owned
devices,
ensuring that apps and data are not impacted by any malware or security
vulnerabilities on non-authorized devices.
Akku restricts access to assets only from registered or company-owned
devices,
ensuring that apps and data are not impacted by any malware or security
vulnerabilities on non-authorized devices.
Akku restricts access to assets only from registered or company-owned
devices,
ensuring that apps and data are not impacted by any malware or security
vulnerabilities on non-authorized devices.
Akku restricts access to assets only from registered or company-owned devices, ensuring that apps and data are not impacted by any malware or security vulnerabilities on non-authorized devices.
Akku restricts access to assets only from registered or company-owned devices, ensuring that apps and data are not impacted by any malware or security vulnerabilities on non-authorized devices.
Akku restricts access to assets only from registered or company-owned devices, ensuring that apps and data are not impacted by any malware or security vulnerabilities on non-authorized devices.
Akku restricts access to assets only from registered or company-owned devices, ensuring that apps and data are not impacted by any malware or security vulnerabilities on non-authorized devices.
Disruption-ready technology
This meant that the organization could continue to use their existing and familiar Active Directory for identity management, while eliminating the need to take up complex and expensive migration of the identity management system to the cloud.
In a world of increasing uncertainty, this means that our client is prepared for business continuity and uninterrupted, secure and efficient operations through any unexpected disruptions - now and in the future.
