Utmaning
A Swedish organization needs to provide its employees and consultants access to Google Workspace for email and file sharing. The organization also uses Google as the primary system for storing user identities.
The users within the organization include:
Healthcare professionals
Case officers
Administrators
External consultants
To prevent hacker attacks and protect digital information and identities in Google, the organization wants to use a more secure authentication method than passwords. The method should be easy to use and require minimal administration to save time and money.
Solution
With Fortified ID Integrity, various e-IDs can be used for authentication against Google Workspace. The following e-IDs are offered for login, tailored to the user's profession:
SITHS: For healthcare professionals
EFOS: For case officers and administrators
Freja OrgID: For employees
Freja eID: For external consultants
BankID: For external consultants
The solution is highly cost-effective because:
The issuance of e-IDs is handled externally
Minimal administration is required within the organization
Standardized integration
The solution supports authentication via:
SITHS card or mobile SITHS
EFOS card or mobile EFOS
Mobile BankID or BankID
Freja eID and/or Freja OrgID
It is easy to deactivate unwanted options. The graphical interface can be customized to match the organization's branding.
Additional Information
The connection between the user's e-ID and the organization’s account is established through a lookup from Fortified ID Integrity Access to the directory service (Google Directory API). The identifier on the e-ID (personal number or HSA-ID) is mapped to an attribute on the user's Google account. The organization can choose which attributes in Google should be used for this mapping.
Protection of login to Google is configured via the SAML2 standard between Google and Fortified ID Integrity Access.
Related information