Insurer builds central access management
TCS centralizes user permissions for access to AWS resources
Highlights
Challenge
A leading insurance firm wanted to centralize its user access permission management.
A leading insurer had adopted AWS as its cloud platform and wanted to centralize user permissions for access to AWS resources through a simplified user experience. With the expansion of user footprint across enterprise applications, the client provisioned multiple AWS accounts to isolate access to workloads. The AWS account administrators had also started using identity access management (IAM) roles for cross-account access, which was a complex process for a large number of user accounts. The insurer wanted to leverage active directory credentials to manage user permissions due to the increase in user accounts.
Solution
TCS built a multi-account architecture with AWS Organizations.
TCS built a hybrid cloud setup in AWS to enable centralized user access to AWS resources and permission management. TCS leveraged Direct Connect to connect with the client’s on-premise Microsoft Azure Active Directory, and used AWS Organizations to build the account structure comprising security account, shared account, and prod and non-prod accounts. TCS made use of AWS Single Sign-On and its integration with AWS Organizations to centrally manage access to multiple AWS accounts and business applications by providing users with a single sign-on access to all their assigned accounts and applications from a central location. By helping the customer build a multi-account architecture and ensuring identity and access management, governance, data security, network design, and logging, TCS helped create multiple accounts and subsequent new accounts within the same organization in significantly less time.
Benefits
Leveraging AWS Single Sign-On, the insurer simplifies user sign-in experience.
TCS leveraged AWS Single Sign-On in a hybrid cloud set up to build a single sign-on experience for the users. By providing secured access to AWS enterprise resources, TCS ensured a breach-proof security posture and helped the client achieve centralized user access and permission management.
Value delivered
What made this happen
Develop strategies for holistic cloud transformation, with end-to-end services for cloud operating models, security, operations set-up, digital process enablement, and cloud value realization.
Simplify hybrid cloud orchestration with a Machine First™ approach, powered by TCS’ Cloud Exponence platform. Make the most of SAP application management services and SAP BASIS support with our industry-leading delivery and operations management capabilities.
Deliver a unified omnichannel user (agent) experience with our AI-based self-service capabilities. Reimagine your customer experience with a CX collaboration space powered by TCS RemacX platform.
Build a resilient and future-ready architecture, leveraging cloud-native infrastructure, automation, and reusable and ready-to-deploy components, including AWS containers, AWS serverless microservices (chassis) platform, and DevSecOps factory.
Enable collaborative ecosystems and cloud computing at the edge to create hyper-personalized customer experiences with intelligent products, connected plants, connected services, and product life cycle management.
Rapidly define, design, and deploy AWS foundational platforms and services for cost management, continuous improvement, and security using services powered by TCS Cloud Mason Framework and reusable infrastructure as code (IaC) templates.
Accelerate business transformation with next-gen products and platforms contextualized for industries.
Reimagine enterprise applications, data, or infrastructure with automated cloud migration services, leveraging data center discovery and migration factory powered by TCS Cloud Counsel platform, TCS CrystallusTM for S/4HANA, and TCS ConvertCore.
Transition seamlessly from legacy applications and systems to microservices-based cloud architectures by leveraging automation and AI.