Dan Tesch, Director of IT and Security at Leapfrog Online, knew that multi-factor authentication (MFA) is good security practice and can help them meet compliance requirements such as the Payment Card Industry Data Security Standards (PCI DSS). He brought in Duo’s MFA to provide secure access to applications.
Proliferating Cloud Applications
Over time, Leapfrog Online started migrating their on-premises infrastructure to the cloud. They started with HR, finance, payroll, CRM, conferencing applications and most recently switched from on-premises Microsoft Office/Exchange to Office 365.
One major driver to deploy Office 365 was to enable easy collaboration among their users, especially with people working outside the company, such as vendors and partners. Without single sign-on (SSO) solution, users had to remember multiple usernames and passwords, logging in several times in the day to access different cloud applications.
The Solution: Duo’s SSO With MFA
When Dan found out Duo provided a single sign-on (SSO) solution for cloud applications, he jumped at the opportunity. Duo gave Leapfrog the opportunity to consolidate several different solutions and save on the time, cost and resources required to procure and deploy products from separate vendors.
Duo was able to fulfill all major use-cases and requirements for SSO. IT admins were able to integrate Duo’s SSO with all of their cloud applications such as Silversky, Dyn, Sauce Labs, Workfront, Salesforce and O365.
“Deploying SSO with Duo was fairly straightforward. It took us a day to get SSO up and running and we configured our first application within a couple of hours,” Dan said.
Existing users were able to leverage the benefits of SSO instantly. Since users were already enrolled in Duo’s MFA, no additional enrollment or registration for SSO was required. Plus, since users were already familiar with the Duo login workflow, IT admins were able to roll out the SSO solution for all users without hesitation. To log into cloud applications, end users simply had to authenticate with Duo Push once in a day in order to access all cloud applications.
Administrators were able to enforce policies so that only users who have access to an application can actually get access to it. Additionally, they were able to use Duo to ensure basic security controls, such as passcode lock and encryption, were enabled on the device before they were granted access to cloud applications.
“Utilizing Duo for SSO and MFA reduced our total cost of ownership and enabled users to get a secure access to all cloud applications,” Dan said.