Novomatic AG: MFA Simplified Login
Unified MFA Solution for Crowd-Connected Atlassian Applications.
Know MoreAtlassian Crowd Server
Seamless MFA and User Management
100%
Secure Authentication
54+
Integrated Add-Ons
Client Overview
The NOVOMATIC AG Group, with its presence in around 50 countries, is one of the biggest international producers, operators, and exporters of gaming technologies, solutions and equipment. The Group has clients spread over 100 countries where it operates 212,000 gaming terminals and video lottery terminals (VLTs).
Active in all segments of the gaming industry offering a diversified Omni-channel product portfolio to its partners and clients around the world. A shared characteristic of unique innovative strength made us and Novamatic the perfect match.
The Challenge
Streamline 2FA Across Multiple Atlassian Applications for Unified User Authentication
The client aimed to enable Second Factor Authentication (2FA) across multiple Atlassian products, including Jira, Confluence, Bitbucket, and Crowd, with the goal of simplifying the login process through a unified authentication method. They decided to manage all users within Crowd, enabling Crowd Authentication to serve as the single source of authentication for all users. This would allow admins to control access across all connected applications from a centralized platform, reducing the complexity of managing multiple credentials.
However, users still had to perform 2FA individually on each application, even after authenticating through Crowd. While this extra security layer was intended to enhance protection, it created a significant productivity bottleneck, especially with a user base of 15,000. What initially seemed like a small inconvenience soon became a critical issue that needed to be resolved to improve efficiency and user experience across the organization.
Solutions we provided to Novomatic AG
Crowd SAML SSO
2 Factor Authentication
miniOrange developed a solution that keeps users' Crowd authentication sessions and 2FA sessions in sync. With this solution, users only need to authenticate once via 2FA, and the authentication is valid across all Crowd-connected applications. This significantly enhanced the user experience and increased customer satisfaction, while still maintaining strong security.
How It Works
In a Crowd-managed environment, authentication sessions are shared across all connected applications. miniOrange’s solution leverages this principle by sharing the MFA authentication session with all connected applications. The MFA plugin installed on these applications validates the session, checks the user's access permissions, and grants login access accordingly. To ensure security, miniOrange’s MFA solution restricts the shared session to the same browser, eliminating any potential security risks.
Key Benefits
- Being a Crowd Managed Environment, admins could manage end users 2FA Access from the Crowd server itself.
- Users 2FA were automatically validated in the Crowd Connected applications.
- Users are not required to manage multiple credentials to access the applications.
Extended Crowd Capabilities
- Compatibility with SSO: Admins can disable the local 2FA for users if the user authentication was performed by SAML SSO via IDP. This solves the problem of redundant 2FA by skipping local 2FA if the 2FA is already handled on IDP.
- Support for Multiple Authenticators: Admins can choose from an array of MFA Authenticator methods which suits their needs
- One pass code across multiple applications: Users can choose the same pass code for validating MFA in multiple applications so that they do not have to manage multiple credentials.
Our product proved to be the best. What about you? If you have similar challenges or just want to know more about what we can do in the realm of identity and access management, please contact us at info@xecurify.com or call us at +1 978 658 9387. We would be glad to assist and find the best solution for your needs.
