OneLogin is an identity platform for secure, scalable and smart experiences that connect people to technology. With the OneLogin Trusted Experience Platform, customers can connect all of their applications, identify potential threats and act quickly. Peter Gesper, Senior Vice President of IT of Noon, tells us why OneLogin has become the company’s main control portal for its access management and authentication.
Noon is the Middle East’s homegrown online marketplace that is pushing the boundaries of e-commerce in the region.
With an extensive range of goods available on its website ranging from electronics to fashion and from beauty to sports products, there are few sectors that it is not involved with.
Like many businesses its cybersecurity is a top priority, that’s why it has chosen to deploy the identity platform OneLogin so potential threats can be identified quickly and effectively dealt with.
OneLogin SSO has proven to be especially valuable in increasing security and streamlining processes including onboarding.
One Secure SSO Portal for All Apps has also demonstrated its ability to increase productivity while keeping data secure.
With single sign-on users only have to enter one set of credentials to access their web apps in the cloud and behind the firewall – via desktops, smartphones and tablets.
This foundational identity and access management (IAM) measure is a first step in building trusted experiences for an enterprise’s workforce, customers and partners.
OneLogin’s policy-driven password security, multi-factor authentication and context aware access management ensure that only authorised users get access to sensitive data.
Users can implement more demanding password policies such as required length, complexity and restrictions on password reuse, as well as session timeout and password reset self-service policy to heighten protection without impeding their users.
The single sign-on services provided by OneLogin have proven imperative to rolling out new applications to whole organisations, regardless of the location or time zone.
Customers have found that not only has it helped them simplify an evolving estate of applications but thanks to OneLogin they can also look to integrate more software with complete confidence in the future.
Secure and unified endpoint management
OneLogin Desktop is a new kind of endpoint management. Users can leverage the secure profiles of laptop and desktop computers enrolled with the OneLogin Cloud Directory.
Once users have logged into their secure profiles with their OneLogin Cloud Directory credentials, they can directly access all their apps via the OneLogin SSO portal.
In other words, once users are logged into their operating system, they don’t need to login again to access corporate apps, freeing up their time while strengthening security.
OneLogin’s sign-on authentication system lets users create any number of logins to the same type of application. If a business has five WordPress sites or two Google Apps accounts, OneLogin’s Trusted Experience Platform makes them available with one password, one click.
If a business has different staging and production environments, multiple login functionality is a real time-saver.
Businesses can allow end-users to login to OneLogin using their Social Identity Provider credentials from services such as Facebook, Google+, LinkedIn and Twitter. This streamlines the user experience by removing the need to create and remember a new password.
OneLogin has made it easy for OneLogin admins to implement Social Login. This feature is especially useful for apps used by a business’s customers, as it removes friction at a critical point in the customer journey.
Desktop Single Sign-On (SSO)
OneLogin only prompts users for credentials when necessary. Users who are already signed into their corporate Windows domain get automatically signed into OneLogin using Integrated Windows Authentication.
Application launch links and deep linking
Users don’t always have to access apps via OneLogin’s SSO portal. Many times, apps are launched via links in emails, such as document sharing notifications or meeting invites. Users can click the link and OneLogin gets you signed in automatically.
OneLogin is not limited to enterprise apps. Businesses can choose to allow users to add their own, personal apps like LinkedIn, Twitter and travel booking sites. Personal apps do not require IT involvement and are easily configurable and accessible to users via their secure single sign-on portal.
OneLogin’s portal supports 21 languages, which gives users across the globe an optimised user experience. Businesses can choose which localisation they want to make available and OneLogin will automatically match the portal’s language to the user’s browser settings.
OneLogin handles web applications that don’t support federation with a technique known as password vaulting. This enables enterprises to provide their users with SSO for all web applications. The mechanism by which vaulted passwords are stored has been strengthened to protect them against unauthorised access.
OneLogin is pre-integrated with thousands of web applications and new apps are added every day.
Some apps don’t support multiple users at the same time, such as Twitter, FedEx or SurveyMonkey. OneLogin’s SSO solution lets you share access to such applications among multiple users without having to give out the credentials.
This is helpful when new people join a business but is critical for data security when employees leave an organisation.
Intelligent CIO spoke to Peter Gesper, Senior Vice President of IT of Noon, to find out more about the solutions.
Can you tell us which OneLogin products you are using?
We mainly use OneLogin SSO.
Could you describe the benefits these solutions are bringing to Noon?
Before we used OneLogin each of our internal portals had separate passwords and separate authentication methods. Some of them had no 2FA ability either.
Implementing OneLogin SSO has not only helped us to streamline the process but also increased security and reduced support hours required by our system admins.
The biggest advantage of OneLogin would be the provisioning ability where we can onboard hundreds of users with a few clicks.
What necessitated your decision to implement the solutions?
It was the importance of securing different platforms internally and streamlining the process of administration.
Can you explain how OneLogin has facilitated you to do the following?
(a) Reduce helpdesk tickets through self-service password resets.
The amount of password reset requests has reduced by 95% which gave more time to our system admins to focus on other projects
(b) Streamline and speed app access through its single sign-on and the portal
The seamless access that reduces time to open different apps has been significant as after initial logon and 2FA which only takes a minute, users have access to all applications. Before they would need to logon individually.
(c) Secure your business with AI-powered multi-factor authentication
This was a game changer and specifically with the one touch approach on the protect app based on geo location and IP.
(d) Save IT staff time through real-time, automated user provisioning and de-provisioning.
If we didn’t have provisioning in place, we would have never been able to scale with the speed we needed to. Without provisioning, we would have needed a team of 10 system admins to manage this. Now we are managing 7,000 users with three system admins only.
How has OneLogin helped Noon become more productive?
By reducing the number of clicks users need to login to their daily tools and at the same time increase the security aspect of the authentication via OneLogin protect app.
How did the vendor meet your objectives and what selection process did you adopt?
We chose OneLogin based on previous experience within the industry and referral received. At the same time we evaluated the support portfolio of applications and OneLogin has the edge on this by far.
Is the solution delivering on your objectives?
Yes and we are adopting it more with making OneLogin as a mandatory requirement before choosing new tools. In other words, if OneLogin SSO is not supported within an application that we are looking at we don’t even consider it.
How has the system improved your company’s security?
It significantly reduced generic passwords, guided the users to adhere to a certain password complexity, 2FA implementation has added the secondary layer that helped to avoid unauthorised access and the offboarding process became automated so that it removed the possibility of manual mistakes.
How have your employers and customers responded to the new solutions?
Internal customers liked the simplicity of use and the time saved in logging on to different portals. As in the current scenario they only need to logon once and have access to all their tools.
Can you explain the main security issues Noon faces and how OneLogin has helped you with these?
We have faced a rapid growth of different tools that departments were using or requesting. Each of them has a unique setup and unique settings. Users would need to logon individually and system admins would need to manage all these tools separately which isn’t practical and efficient as the possibility of mistakes is high.
Implementation of OneLogin has helped us to streamline process and make OneLogin the main control portal for our access management and authentication.