MAN Truck & Bus SE Implements Streamlined 2FA Solutions with miniOrange
MAN Truck & Bus SE, a subsidiary of the Volkswagen Group, specializes in manufacturing commercial vehicles such as trucks and buses. Renowned for its global reach and dedication to innovation and sustainability, MAN Truck & Bus SE is a leading player in the automotive industry.
The Existing Setup:
Initially, MAN Truck & Bus SE sought to manage user permissions within Crowd while maintaining user authentication through their Identity Provider (IDP). Additionally, they aimed to enable Single Sign-On (SSO) access for users across Crowd-connected applications.
To address these requirements, we proposed leveraging our Crowd SAML and Connector apps to facilitate SSO for their Atlassian applications, including Jira, Confluence, Bitbucket, and Bamboo. This approach streamlined user access, enabling seamless login to all Atlassian applications using their IDP credentials.
The Requirements:
They sought to enhance user protection by implementing 2FA as an additional security layer. Their goal was to solely enforce 2FA for users logging in with local credentials, which would’ve helped them avoid redundancy for those using SSO, where 2FA was already being enforced at the IDP level.
They also highlighted usability challenges for users managing multiple OTP entries on their mobile authenticator apps, one for each Atlassian application. Additionally, the setup risked requiring multiple 2FA prompts from users, one for each application, despite a single Crowd login.
The Solution:
miniOrange 2FA addons played a crucial role in meeting MAN Truck & Bus SE's requirements:
- Streamlined 2FA for SSO Users: Our "Skip 2FA on Crowd SSO" feature eliminates repetitive 2FA prompts for SSO users. When 2FA is handled by the IDP, our plugin bypasses additional 2FA steps for users logging in via SSO. However, local credential logins still require 2FA, ensuring robust security while enhancing user experience.
- Common Passcode for all Atlassian Applications: Our "Share Secret Key" feature enables users to utilize the same Mobile authenticator Key across all Atlassian apps. This eliminates the need to manage multiple entries in their authenticator app, simplifying the login process.
- Efficient 2FA Across Connected Applications:The "One-time 2FA Validation" feature revolutionizes user authentication across Crowd-connected applications. MAN Group users who complete 2FA authentication on one application are spared from repeated 2FA prompts across other connected applications. This optimization minimizes interruptions and boosts productivity.
How Did It Benefit MAN Truck & Bus SE?
- Streamlined Authentication: Enhanced user experience by eliminating repetitive authentication steps for SSO users while ensuring security for local logins.
- Seamless Workflow Optimization: Minimized interruptions, optimized workflows, and boosted productivity by enabling users to bypass repeated authentication prompts across connected applications after completing the process once. .
The implementation of these features was a significant milestone in MAN Truck & Bus SE’s security strategy. By combining miniOrange’s Crowd SSO with our customized 2FA add-ons, they successfully achieved a delicate balance between heightened security and user convenience.
Your needs, Our solution:
Let's embark on a discovery call to explore how we can address your needs. Reach out to us at +1 978 658 9387 or email your inquiries to info@xecurify.com. We're eager to discuss how we can move forward together.