Challenges Faced:
The client needed to maintain separate authentication processes for different groups, including Members, Candidates, and Staff. Each group required a distinct Single Sign-On (SSO) flow to access the necessary resources, which added complexity and inefficiency to their system.
Business Impact:
Having different authentication methods for each user group created a fragmented experience, leading to higher maintenance efforts and increased risk of errors. The challenge was to find a way to simplify the authentication process, reducing complexity while ensuring secure and role-based access for all user groups.
Our Solution:
Implementation:
Elastik Teams proposed a streamlined authentication solution using Optimizely. The team created a single login window, allowing all user groups to authenticate via one interface. This solution incorporated Single Sign-On (SSO) from OpenID Connect (OIDC), with different Azure Tenants and the Aptify Ebusiness authentication process, allowing for a unified and secure login experience.
Key Features:
- Single Sign-On (SSO): Integrated OpenID Connect (OIDC) with multiple Azure Tenants, along with Aptify Ebusiness authentication processes.
- Role-Based Access: User claims from the SSO authentication flow determine the roles, enabling users to navigate through the Optimizely environment based on their access permissions.
- Unified Access Point: Created a single Optimizely block for login, providing a seamless experience for all user groups.
Innovative Aspects:
- The solution optimized authentication by consolidating multiple authentication processes into one unified interface, reducing complexity for both users and administrators.
- Access control was streamlined based on the claims set from the SSO authentication, allowing users to be directed to the appropriate resources within the Optimizely environment based on their roles.
Results & Impact
Performance and Client Feedback:
The team successfully met the client’s requirements, delivering a solution that allowed for a single login interface for all application users. The implementation was achieved within the agreed timeline, and the solution has been praised for its effectiveness and the ease it brought to managing user access.
Business Outcomes:
- Simplified Authentication Process: One unified login system for all user groups, significantly improving user experience.
- Reduced Maintenance: Reduced the administrative burden of maintaining different access parameters for each user group.
- Improved Efficiency: Optimized the authentication flow, ensuring secure access without compromising ease of use.
Current Status:
The solution is live and has been successfully implemented, providing the client with a seamless authentication experience for all user groups.
Conclusion
Elastik Teams implemented a powerful and efficient authentication solution that streamlined user access while reducing the complexity of managing multiple authentication processes. This solution provides secure, role-based access with a single sign-on interface, improving both the user experience and administrative efficiency.
