By Brim Basom
At Susan G. Komen, we want the highest percentage possible of every dollar to go to our mission of providing grants and funding for breast cancer research and our community health outreach. To that end, we are always looking for opportunities to improve productivity and to invest in projects that can deliver a strong return.
We work with several vendors of cloud-based applications and services. More than 250 users at our corporate headquarters in Dallas log in to these Web-based applications throughout the day in order to fulfill their responsibilities.
However, an internal assessment revealed that our workers frequently lost or forgot the URLs, user names and passwords required for authentication and access to these applications. Consequently, they were locked out of the systems they needed for their daily tasks.
This problem was increasing the cost of running our help desks, as our IT team was frequently called upon to reset passwords. Users were wasting valuable time attempting to access applications when they could be working. We wanted to improve productivity by giving users a central portal that would provide easy access to all their Web-based applications.
We also wanted to improve security. Users were writing user names and passwords on sticky notes, in notebooks, in text files stored on removable storage devices, and other non-secure locations outside the control of administrators and IT professionals.
As a nonprofit organization, we interact with donors and corporate partners that fund our foundation. Many of our cloud applications contain information from donors that we want to keep secure, including contact information and email addresses.
We needed to safeguard our information, while also finding a better way to monitor log-ins to our systems. So we sought an encrypted portal solution that could store login information securely in a single location and provide better administrative control.
Rolling Out a Single Sign-on Solution
To meet these requirements we evaluated the top single sign-on providers in the industry and undertook a rigorous vendor analysis. We determined that OneLogin was the most modern of the SSO solutions we assessed. It had all the features we were looking for and supported all the applications we use. Perhaps most important, it’s very easy to use. It enables people to securely log in to all their cloud apps with a single click, so they don’t need to remember a lot of passwords.
We also liked the way OneLogin uses Security Assertion Markup Language (SAML) for enterprise integration with cloud-based applications. This is in line with our vision for our technology platforms going forward.
We expect Web-based apps and services to continue to proliferate. By using SAML, the system leverages the industry standard for securely exchanging authentication and authorization data to address Web browser single sign-on.
The expertise of OneLogin’s support team was another crucial factor in our evaluation process. The group worked with our infrastructure and IT services teams to set up a trial run on our network so we could test the product fully before deploying it. The prototype enabled us to test all of our cloud apps to ensure they would work with the system and to confirm that we liked the look and feel of the solution.
We rolled out the system OneLogin in phases to help drive end-user adoption. First we brought up the popular applications such as Salesforce.com. OneLogin’s integration with Salesforce is well documented, which simplified the process. The more applications we add to the system, the more valuable the system becomes and the more it improves the overall end user experience.
Our IT team met with the leaders of our various business groups and educated them about the value of this solution. We helped users understand how it would reduce costs for the organization, allowing a higher percentage of our capital to go to our mission.