Ping + Preempt: Deploying Thousands of Users in a Week
Recently Preempt and Ping joined forces to help a major conglomerate move tens of thousands of employees to a work from home scenario. This enterprise had already chosen Ping to be their identity and access management (IAM) solution, (along with over sixty percent of the Fortune 100 in America).
Identity and IT teams require a close alignment if you have a major move in a short amount of time. IT Security is well aware that over eighty percent of successful attacks and breaches involve Identity, in particular service accounts and privileged users. Any changes or applications of IAM to move users to non-sanctioned equipment, or even working from home (with or without a VPN) involve increased risk to those users.
This conglomerate needed quick:
- Unified visibility into ALL domain controllers (DC) Preempt
- To know what their employees were accessing? Preempt
- Step-up authentication everywhere without adding software on any endpoint PingFederate+ PingID
- Low-friction: Can they step-up authentication ONLY when necessary? Preempt
- Send that information about risky triggers to other systems? Preempt
Ping as an authentication authority allows customers to add that level of step-up authentication to legacy network systems and apps, cloud apps, IaaS environments, and even mobile apps. The integration with Preempt’s sophisticated risk score analysis adds conditional risk-based authentication that was easy on the users and reduced “Type in your password again” fatigue. A risk score is based on many factors from physical location changes, new or insecure devices, accessing a new (to the credential) service, and more.
What were the results? The enterprise went from twenty thousand to over a hundred fifty thousand remote users using MFA in a week. Over two thousand apps – on premises and in the cloud, and a couple mobile – now require MFA authentication based on risk, reducing the number of times a user needs to type their password in a day. For a user experience, there was no difference logging into the domain vs apps in Azure. For IT Security people, the enhancement of visibility and security over the identity store in a complex Active Directory forest delighted them. As the customer said, “We can’t do digital transformation without getting identity right.”
If you missed the webinar, visit this Link
If you’re interested in reading more in a case study whitepaper, visit Here
Would you like to see the PingFederate integration live? We’re doing a Demo Tuesday!
Posted by Jeannie Warner on July 7, 2020 6:26 PM