• BLOG
  • CAREERS
BlogSlayerBlogSlayerBlogSlayerBlogSlayer
  • ABOUT
  • PRICING
  • PROCESS
  • WHY FROGSLAYER
  • FAQ
  • CONTACT

Is System Security Limiting Your Productivity?

    Home Software Development & Technology Is System Security Limiting Your Productivity?
    NextPrevious
    simplifying authentication

    Is System Security Limiting Your Productivity?

    By Brian Cahill | Software Development & Technology | 0 comment | 22 December, 2016 | 0

    Frustrating Beginnings

    When I started my first day at FrogSlayer, I was given access to the various IT systems. Separate accounts were created in Active Directory, Dropbox, Google, Azure, and AWS (which had two different portals). I made a note of where each service was at and what it did. Permissions for users varied between services and removing user access required a list of steps in order to make sure something didn’t get missed. In addition to this our version control software was hosted in the cloud and authenticating off of the Domain Controller (DC) in the office. This resulted in frustrating delays while the developers were coding.

    Initial Research

    simplifying authentication

    The first idea was to implement a DC in the cloud replicated to the physical DC in the office to resolve the version control speed issues. But before jumping in to make changes we decided to stop and evaluate our options. The first step was to identify requirements. When boiling it all down the main requirement was a fast and reliable system which allowed a single username and password to access all company applications. This would provide security through the ability to memorize a single username and password instead of needing sticky notes to remember multiple credentials. Also a single source for authentication would ease the on-boarding process, ongoing permission management as well as the need to remove permissions when an employee moves on.

    Possible Options

    Understanding the basic requirements, we looked at features and experimented around with a number of options including Bitium, Onelogin, Okta, Azure Active Directory and a few open source solutions. As we compared cost, functionality and requirements we decided to give Azure AD a try.

    azuread | simplifying authentication

    Jumping In

    Implementation started by setting up Azure AD Connect to synchronize with our local DC. Next, Azure AD Domain Services was configured to enable LDAP and the ability to join servers to Azure AD. Following this, site to site VPNs were setup and we configured a couple of applications to put some live traffic onto the system. We kept things this way for a while as we worked out bugs in the system and verified that it was stable. Over the next month we moved the rest of the applications over. Following this, Windows servers were joined to Azure AD and desktops configured to login with Azure AD credentials. Finally we retired the local DC.

    Solution Pros

    • Single source of authenticationpro | simplifying authentication
    • Two factor authentication is required for password changes and logins from new machines.
    • We were able to configure Single Sign On for AWS, Azure, Google Apps, and WordPress. Other applications use LDAP or Windows integrated authentication.
    • Many third party apps are in the Gallery. We were able to setup a connection to our DNS provider’s web interface so users do not need a password for access.
    • Groups can be used to grant access to specific services.
    • Users can change their password from a web interface.

    Solution Cons

    • Azure AD does not support GPOs.con | simplifying authentication
    • There is a bit of lag from when changes are made in Azure AD and when they are pushed to Azure AD Domain Services (usually only 15-30 minutes).
    • You cannot change a number of the user attributes in LDAP. Email is one example, but if you create an exchange online mailbox it will populate the field for you.
    • Joining servers and PCs to the “new” domain invokes a need to re-create local profiles.
    • When changing domains, SQL server loses all domain user permissions, make sure you have the SA password.

    Finished Product

    We now have all of our apps authenticating off of a single solution. A dashboard with links to all internal applications is the starting place for new hires and a quick reference for existing employees. Our version control software is fast and both the users and IT are happy. With all of the current breaches in security happening, have you stopped to consider whether your current authentication systems are easy for your users to use and actually keeping you secure?

    No tags.

    Related Post

    • frogslayer-aggie-100-2018_3

      College Station Custom Software Development Firm Ranked 29th Fastest Growing Aggie-Owned Company at Aggie 100

      By Holly Melvin | 0 comment

      (COLLEGE STATION, TX – November 12, 2018) FrogSlayer, a College Station based custom software development firm, was recognized as a member of the 2018 Aggie 100 at the Ford Hall of Champions at Kyle FieldRead more

    • custom software code audit | frogslayer

      Why Your Custom Software Needs a Code Audit

      By Holly Melvin | 0 comment

      Just like firms do their due diligence before taking over a company, code audits are our no compromise investigation for rescuing, taking over, or remodeling an existing custom software application. We take a look underRead more

    • smart home custom software featured image

      Un-Fogging the Bathroom Mirror

      By Brian Cahill | 0 comment

      Brian, our Director of IT & DevOps, is an efficiency guru. He’s constantly thinking about how to automate and make things run faster for our team and our clients by uncovering “a better way.” NotRead more

    • meet-a-frogslayer-russell-pier

      Meet a FrogSlayer: Russell Pier

      By Shelby Stricklin | 0 comment

      Meet Russell Pier, “The Russ”, a software developer who has been with FrogSlayer since May of 2017. Russell is one of our student-developers attending Texas A&M University, pursuing his BS in computer engineering. Russell wasRead more

    • Local Custom Software Development Firm Ranked 3rd Fastest Growing Company in Brazos Valley

      By Holly Melvin | 0 comment

      (COLLEGE STATION, TX – July 11, 2018) – FrogSlayer, a local custom software development firm, was named the 3rd fastest growing company in the Brazos Valley for the 3rd year in a row at theRead more

    • custom software bug fixes

      Who Pays for Bugs?

      By Holly Melvin | 0 comment

      Who pays for bugs? Short answer – you do, but hopefully you have a professional software team to help you minimize and control any issues. Prospective clients are often under the assumption with custom softwareRead more

    • meet-a-frogslayer-devin-rabon-people-ops

      Meet a FrogSlayer: Devin Rabon

      By Shelby Stricklin | 0 comment

      Meet Devin Ashley Rabon, FrogSlayer’s Business Operations Manager from Round Rock, Texas. She migrated to College Station to study at Texas A&M University and applied to be Ross Morel’s executive assistant when she was aRead more

    • Guide to Custom Software Project Planning

      A Guide to Discovery, Design & Planning

      By Ross Morel | 0 comment

      READ CUSTOM SOFTWARE 101 – STEP 1: PRE-PROJECT CONSULTING At the beginning of the custom software development process, you’re likely feeling excited and eager to see things take shape. You may also feel a bitRead more

    NextPrevious

    TOPICS

    • Client Resources
    • News
    • FrogSlayer Life
    • Software Development & Technology
    • Project & Team Management

    About FrogSlayer

    We are a group of problem solvers and code ninjas that believe in building software that has real value and improves people’s lives. BlogSlayer is our outlet to talk about everything on our minds.

     

    909 Southwest Pkwy E
    College Station, Texas 77840

    (832) 928-5121

    howdy@frogslayer.com

    About FrogSlayer

    FrogSlayer provides growing companies with the custom software tools they need to accelerate growth and become the technology or data leader in their industry.

    • Terms of Use
    • Privacy Policy
    • Sitemap
    © 2018 FrogSlayer, LLC
    • HOME
    • ABOUT
    • PRICING
    • WHY FROGSLAYER
    • FAQ
    • CONTACT
    • BLOG
    BlogSlayer