Cost-effective & Scalable Approach to IAM & PAM with Compliance in EU/UK. Register Now
  Login  
Hello there!

Need Help? We are right here!

Support Icon
miniOrange Email Support
success

Thanks for your Enquiry. Our team will soon reach out to you.

If you don't hear from us within 24 hours, please feel free to send a follow-up email to info@xecurify.com

Search Results:

×

Oil and Gas Manufacturing

Emarat Petroleum Secures Azure with miniOrange IAM

Emarat Petroleum used miniOrange’s IAM with Azure MFA to build its infrastructure to ensure high availability. The robust security architecture and seamless AD integration.

1,500+

Daily Logins

99.9%+

Uptime

24/7

On-premise Support

Challenges

The current access management systems of Emarat Petroleum exposed their vital business applications to security risks and operational problems. The organization required an authentication and access management solution that would provide strong security features while delivering an uninterrupted user experience for their employees. The organization experienced multiple essential problems during their operations.

  • Authentication Vulnerabilities: The system became vulnerable to unauthorized access because it relied only on password authentication which exposed business and financial data to potential theft.
  • Access Management Complexity: The IT team faced difficulties in managing system access because the infrastructure had become too complicated to handle.
  • Security vs. User Experience: The process of maintaining both security standards and user convenience frequently resulted in security vulnerabilities or user dissatisfaction.
  • Password Fatigue: Users needed to remember multiple passwords for various applications, which resulted in weak password management and decreased productivity.
  • Onboarding and Offboarding Delays: The manual user provisioning and de-provisioning methods led to both security risks and delays when employees transitioned between roles.
  • High Availability Concerns: System authentication failures resulted in blocked access to critical systems, which caused operational disruptions.
  • Inconsistent User Experience: Different authentication protocols between internal and external users created confusion, which led to increased support requirements.

Our Solution and Deployment

The partnership between Emarat Petroleum and miniOrange resulted in a full authentication and access management system, which solved their security problems and improved operational performance. The advanced multi-factor authentication system with Azure MFA integration and high-availability architecture and seamless Active Directory integration rebuilt their authentication infrastructure. The following components outline our comprehensive deployment:

MFA integration with multiple methods

The solution adopted Azure MFA as the main authentication system for external users, which delivered a basic yet secure authentication process. The authentication process included TOTP and SMS and email methods as additional authentication methods to provide flexible and redundant authentication options.

Hybrid Deployment Architecture

The deployment consisted of both on-premise and cloud components, which formed a strong, high-availability system. The architecture design removed all single points of failure, which maintained continuous authentication service availability throughout maintenance periods and unplanned system outages.

Active Directory Integration

The solution integrated perfectly with the current Active Directory system that Emarat Petroleum operated. The integration process allowed for automatic user synchronization and simplified user management through the use of existing AD user accounts and credentials.

SSO for all apps

All applications used single sign-on (SSO) features as part of the deployment, such as:

  • IWA-based auto-login for domain users accessing on-premise applications.
  • Azure AD authentication for external users with MFA integration.
  • Users could access SharePoint, OneDrive, and Outlook cloud applications without passwords through passwordless login features.
  • Session cookies enabled browser-to-browser sharing, which provided uninterrupted Oracle Forms access.

SCIM-based Provisioning

The system used SCIM-based provisioning to automate user provisioning from Oracle Fusion (source of truth) to on-premise Active Directory through custom workflows for user account enabling and disabling.

Customized Self-Service Console

The deployment included a centralized dashboard for all applications, which featured customizable branding that matched Emarat's corporate identity. The system controlled application visibility through subnet-specific policies, which determined user location access.

Built for High Availability

The system used load balancing and failover setup while Redis operated natively to provide stability and minimize downtime.

Result

The miniOrange solution enabled Emarat Petroleum to receive substantial enhancements to their authentication infrastructure as well as an improved security posture. The implementation resulted in three key benefits, which included advanced authentication security with continuous system operation and efficient user management processes. The following report provides a complete analysis of the implementation results:

  • Multi-Factor Authentication: The implementation of Azure MFA together with TOTP and SMS and email options at Emarat Petroleum protects both internal and external access points from password-based vulnerabilities without affecting user operations.
  • Robust Uptime and Resilience: A hybrid system that combines on-premise and cloud components with load balancing and Redis optimization and hardware failure and maintenance redundancy provides more than 99.9% uptime and fast authentication responses.
  • Better User Management: The system integrates directly with Oracle Fusion and Active Directory through a SCIM-based provisioning system, which automates all account operations and simplifies user management.
  • Unified Access and Productivity: The implementation of Single Sign-On (SSO) enables users to access both on-premise and web applications through one login, which decreases helpdesk tickets and improves productivity and user satisfaction.
  • Customized, Branded Portal: The passwordless self-service portal, which matches Emarat’s corporate branding and operates under subnet-specific policies, enhances user adoption and delivers a unified experience.
  • Scalable Infrastructure: The system maintains flexible design capabilities, which enable support for future growth and additional authentication methods and further integrations based on Emarat Petroleum’s increasing needs.

About Emarat Petroleum

Emarat Petroleum, a leading UAE oil and gas services provider, delivers essential energy solutions while managing sensitive operational and financial data. The company required a robust identity and access management solution that supports a diverse workforce and integrates seamlessly with both on-premise and cloud systems. This approach ensures stringent security protocols and streamlined access management across its specialized industry software.


Industry
Manufacturing
Employees
1,500+
Location
UAE
Products Used
MFA Solution
Book Expert Consultation

Want To Schedule A Demo?

Request a Demo