The solution: A comprehensive health check of the landing zone leading to on-premises upgrades, quick fixes and SSO implementations
The retailer enlisted the help of Insight to conduct a health check of its Azure® Landing Zone and Azure Active Directory® (AD), and discuss options for SSO implementations and future improvements.
At the start of this engagement, the retailer was already in the middle of an upgrade on an AD environment. Together, we made a strategic plan — ensuring that the upgrade would finish with the newest version, and that improved performance would enable smooth integration of subsequent updates and add-ons.
With an open line of communication, Insight was able to assess the client’s Azure Landing Zone from a security perspective, making a list of items that were in good condition, and those that needed updating. The same was done for the AD on-premises. From there, we could immediately tighten security of the landing zone, clean up the AD, implement an SSO experience for users and create a foundation for structured expansion, as discussed.
The benefits: Improved security and a solid foundation for growth across all platforms
Today, the retailer has reshaped global admin access. With an audit of current user role assignments, the company strategically reduced its once ad hoc user base from 16 to five and enabled multi-factor authentication.
Insight also helped the client shift to Webex® pointing to the Azure AD rather than Active Directory Federation Services (ADFS) on-premises, completing the desired SSO implementation.
Using quick fixes, Azure Security, and Azure governance and connectivity, the client’s identity secure score has tripled, moving from 16% to 53% — with a projected short-term target of >60%.
Additionally, we now have short-term targets of increasing the subscriptions secure score to above 80% and passing all 44 controls of regulatory compliance.
The new, updated Azure AD Connect server and future-state governance blueprint provided by Insight laid strong groundwork for further applications and developments for the client, its employees and its customers. Insight and the client continue to work together to elevate user experience and online security.