If you run a website, operate a customer or partner portal or your business is running a cloud service, you need a way to manage users and their access to applications. Okta’s enterprise grade, zero downtime identity service can help you innovate faster, decrease IT costs, increase revenue and ensure a seamless user experience.
Okta automates account creation and user registration, enabling single sign-on across your sites. The Okta UI is fully customizable, with built-in tools or by using Okta’s REST APIs.
Configuration is flexible and simple, with support for individual, 3rd party enterprise or social authentication. Okta comes pre-integrated with over 2,000 apps and can easily connect to custom cloud and on-premises applications.
This presentation provides an overview of external identity management and how Okta can provide identity services for your web presence.
Link for more information: http://www.okta.com/problems-we-solve/managing-external-identities.html
Emixa Mendix Meetup 11 April 2024 about Mendix Native development
Pre-built, Secure Identity Layer for Consumer Websites, B2B Portals and SaaS Applications
1. Okta for External Identity Management
Identity Services for Your Web Presence
2. Contents
• Overview – Okta for Websites, B2B Portals and Cloud Services
• B2B Portal Trends
• Customer Case Studies
• Conclusions
3. Company to company collaboration increasing
okta confidential 3
B2E
e.g. Sharepoint
Knowledge portals
Dashboards
Next-gen intranets
B2C
E-business portals
Constituent portals
B2B
Supplier portals
Distributor portals
2007
60%
25%
15%
2013source: Gartner
B2C
Tied to revenue
“Ease of Use” is critical
New - built from cloud apps
B2E
e.g. Sharepoint
Knowledge portals
Dashboards
Next-gen intranets
60%
B2B
Supply chains connected
Partner workforces
New – built from cloud apps
4. All Your Devices
All Your People
Desktop, Laptops,
Tablets, Smartphones,
Employees, Customers,
Partners, Contractors
Mobile
On Prem
Cloud
On Prem Identity
LDAP
5. One Service, Addresses Two Identity Problems
okta confidential 5
Remote/Mobile
Employees
Employees
Identity Management for
Internal Users
Customers/
Partners
Identity Management for
External Users
6. Okta Identity Services for Your Web Presence
okta confidential 6
Websites
Consumer, e-commerce or
Community sites
Connect to Partner’s AD/LDAP
(Partner Federation Service
not Required)
Easily Customizable
Okta User Interface
Multi-tenant Environments
Organization Management
Complete Identity Layer,
Completely Embedded
Self-service Registration
Social ID Authentication
Login, Registration, Password
Lifecycle all via REST APIs
CLOUD DIRECTORY – SINGLE SIGN-ON – USER MANAGEMENT
Portals
B2B Sales, service or product
information sites
Cloud Services
SaaS or PaaS offerings
7. 1st Party Cloud Services
Okta Identity Services for Your Web Presence
okta confidential
LDAP
Sign In
Username
Password
3rd Party Cloud Apps
3rd Party On-Premises Apps
Cloud
Directory
REST
APIs
Single
Sign-On
SAML-Enable
3rd Party
Identity Stores
Enterprise Identity
Providers
COMPREHENSIVE
FUNCTIONALITY
User
Management
UI
Skinning
MANAGED
APP INTEGRATIONS (SPs)
FLEXIBILE
AUTHENTICATION METHODS
Organization
Management
3rd Party Identity Sources
Individuals
Social ID / OpenID
1st Party Apps
9. What is a B2B Portal?
Partners
Employees
Customers
MyCo portal
account
support
shipping
Account
app
Support
app
Shipping
app
• Where you conduct business online
• Your services
• Partner management
• Customer support
• Customers, partners, employees
10. Building B2B Portals: The Old Way
Adopt what
software you can2
Pick a
Platform1
Deploy, monitor,
maintain, updateN
Get developers to
write additional apps3
11. The Old Way: Single Platform
• Advantages
– Uniform user experience
– Simple user management
• Disadvantages
– Development is rigid and difficult
– Components are not best of breed
– Need expertise outside of your core business
– Expensive to maintain and adapt
12. Building B2B Portals With the Cloud
Product
Quote & Order
Processing
Collaboration
Product
Pick the best apps
for business need
Build custom apps
on the best platform
as needed
Link together with
a simple portal
New problems:
• How to synchronize
accounts?
• How do you
provide SSO?
Helpdesk
13. Okta for B2B Portals
Collaboration
Helpdesk
Product
Customer or Partner Network
Product
Quote & Order
Processing
• Easy to use
• Cloud Service
• Comprehensive
• Secure
Register once
Login once
Individual Users or
Partner Networks
1
2
3
14. Integration Toolkits for On-Premises Apps
Your NetworkInternet
MyCo portal
account
support
shipping
userID
Password
Account
app
Support
app
Firewall
OKTA
SSO Plugin
Internal users
SQL DB
• SSO-enable Any App
• IIS/ASP.NET
• PHP
• Java Tomcat/Jboss
• Web server plug-in or code libraries
• Open source, fully supported
16. WEBSITES PORTALS CLOUD SERVICES
Customers Using Okta for an External Web Presence
okta confidential 16
17. Reduced IT Costs + Fast Deployment
okta confidential 17
• Canada’s largest shipping company
• Ships 100 million pounds per year
• Powers shipping / returns for Xerox
• Faced a quick deployment schedule
Needed SSO to Xerox E-returns Portal:
Xerox was a major customer demanding a
seamless end user experience
Faced a short deployment schedule:
Purolator revenue tied to this portal, with Xerox
pushing Purolator as well.
Multiple IDs for one Salesforce org:
Would need to set up many SFDC orgs to get
around this requirement
Seamless experience, happy customer:
Xerox customer returns now handled in one
web application
Reduced IT Costs:
Portal capability deployed on demand vs. built
in house
Deployed ahead of schedule:
Purolator revenue accelerated
New portal customers now possible
18. okta confidential 18
• Leading provider of business service
management software
• ~81% of Fortune 500 companies rely on
BMC and tens of thousands of customers
Multiple logins required
Employees, Partners and Customers had
multiple passwords to access apps
Multiple authentication domains
No trust between internal & external apps
Duplicate user accounts
250K accounts created for 70-80K users
Seamless experience
Leverage SSO for ~8K partners to access
internal and external applications
Reduced IT expenses
Okta easier and less expensive than existing
solution
Directory consolidation (Phase II)
Integration with AD for internal users & 80k
external users mastered in Okta
Improved Experience + Directory Consolidation
19. Additional Okta Solutions for an External Web Presence
okta confidential 19
Completely Custom
Solution
§ Users login and land on the
Guidance-branded portal dashboard
§ User can SSO into any application on
the dashboard
Challenge
Large User Import
§ One-time import of 1M users
§ Iterate through the list of users and
call user creation and group
assignment API for each user
Quick Deployment
§ Minimal customization enabled easy
deployment
§ Redirects to Okta
Challenge
SSO for End-Users
§ Provide authentication for multiple
applications
§ Easy to maintain implementation
Note:Full implementation pending.
21. Okta for External Identity Management
Identity Services for Your Web Presence
Consumers
Organizations
On-Premises Apps
Authentication
Cloud Directory
Social Identity
Enterprise Identity
Cloud Apps
22. Market Leader in Identity & Access Management
• All Users, Devices & Apps
• SSO, Strong Authentication, Provisioning, Analytics
• Thousands of Pre-integrated Applications
• Integrates and Extends Legacy Identity Infrastructure
Modern Identity
Service
Enterprise Service
and
Support
• Zero Downtime Service Architecture
• Professional Services Team with Deep Identity Background
• 24 / 7 / 365 Support
Veteran
Team
“Okta makes our problems their
own and it’s why we can rely on
them to make us successful.”
“Gatwick Airport never shuts down, and we expect the
same from our partners. Okta's enterprise-grade
service was the only solution that could meet our
technical, operational and security requirements.”
okta confidential 22
23. Summary
• Okta for Your Web Presence
– Highly flexible
– Rapid implementation
– Cloud identity
• Comprehensive Solution
– SSO across multiple customer facing applications
– Flexible Integration with partner identity infrastructure if required
– Username management with transformation
• Fast, dependable implementation
– Proven with major customers and projects
– Supported by a dedicated implementation team