The Oberoigroup is a luxury hotel group with its head office in New Delhi, India. Founded in 1934, the company owns and operates 32 luxury hotels and two river cruise ships in 7 countries, primarily under its Oberoi Hotels & Resorts and Trident brands.
The Oberoi hotels and resorts wanted a solution that has easy and secure access to their on-premise and cloud apps using SSO. They also wanted to provide a frictionless and reliable self-service password reset functionality to their employees.
The administration of access and user authentication presented a number of difficulties for The Oberoigroup. They needed a solution that would enable self-service password reset functionality, offer seamless single sign-on (SSO), and guarantee secure access to vital applications including Adobe Captivate Prime, Salesforce, SAP HRMS, and Oracle Opera Application. In compliance with their internal regulations, they also wanted to set up IP and Location based adaptive limits and keep audit logs for an entire year.
Users for Oberoigroup were kept in On-premise Active Directory. They have to be safely provisioned into miniOrange from Active Directory. Eight of their applications, which were being used by a total of 6000 people, required a smooth integration with miniOrange’s Risk-Based Authentication.
On the other hand, due to hosting on their private AWS, miniOrange shares responsibility with AWS for application availability. In case of a regional failure from the AWS side, there is a potential slight downtime while we provision the infrastructure to a separate region.
miniOrange collaborated closely with Oberoigroup to understand their unique requirements and provide a tailored solution. The following features and capabilities were implemented to address the challenges effectively:
miniOrange integrated SSO protocols like SAML/OAuth with the apps of the Oberoigroup, providing a simple authentication process for users. Employees no longer need numerous logins because they had secure access to all authorized applications with a single set of credentials.
miniOrange introduced MFA to improve security by adding an extra layer of security throughout the authentication process. This guarantees that only authorized users can access the resources, which considerably decreases the possibility of unauthorized access.
miniOrange provided a comprehensive identity and access management solution that facilitated user provisioning from the on-premise Active Directory (AD) into miniOrange. Additionally, a self-service password reset option was integrated, allowing users to change their passwords independently and securely.
In compliance with the Oberoigroup's internal policies, miniOrange stored one year's worth of audits and logs. This ensured a robust audit trail for monitoring user activities and facilitating compliance requirements.
To mitigate the challenge of potential downtime caused by region failures due to AWS hosting, miniOrange implemented a Disaster Recovery Strategy. This strategy involves provisioning the infrastructure to a separate region using Terraform, a tool for infrastructure provisioning and management. Since we host our instances in multiple availability zones, the availability zone failures are covered by miniOrange with zero downtime.
In conclusion, the Oberoigroup's adoption of miniOrange demonstrates a successful partnership in dealing with user access management challenges and boosting security. By providing seamless single sign-on (SSO), self-service password reset functionality, and IP and Location based adaptive restrictions, miniOrange enabled the Oberoigroup to achieve their objectives successfully.
miniOrange successfully implemented the desired Single Sign-On (SSO) and Multi-factor Authentication (MFA) solution for Oberoi Group. By using miniOrange’s secure Single Sign-On (SSO) solution, Oberoi Group users seamlessly logged into their application using their active directory credentials. This led to increased productivity and improved user experience.
Also, by implementing miniOrange’s Multi-factor authentication (MFA), Oberoi Group benefited from enhanced security for their applications and reduced the chances of a user gaining unwanted access to the system. Overall, Oberoi Group was able to cut down on its IT costs, and spend less time and resources on IT security management issues.
You can sign up for a free trial account to test miniOrange’s SSO and MFA solution here or if you would like to see a demo of our solution Click Here.