Avoid the Headaches and Costs of AD Domain Consolidation
For any company, M&As are a huge transition that greatly affects all levels of your team, from your financial department to HR. As more companies become technology companies, M&As have an even bigger impact on IT, with everything from identity management to your Active Directory infrastructure, to your IT security impacted by huge systemic changes. It can be a long, drawn-out process before your company can find its feet again to start walking.
But what if we told you that it doesn’t have to be complicated?
Okta eliminates the costs and headaches of AD domain consolidation during M&As, allowing you to smoothly integrate users across different organisations and give them access to the tools they need.
This whitepaper shares how a range of renowned companies – from News Corp to National Geographic – have benefited from our cloud-based services during such transitions, and more importantly, how you can too.
It’s no secret that mergers and acquisitions have become a prominent corporate strategy, providing a way for companies to access new markets, technology, and resources faster than they could through their own internal efforts. But when every company is becoming a technology company, it becomes inherently more complex to combine unique technology stacks. No longer is it just about ensuring an organisational fit between the parent company and its subsidiary, nor matching corporate cultures and processes. It’s also about merging administrative systems effectively and migrating legacy on-premises systems to the cloud.
In particular, what we see time and again are the headaches—and costs—caused by AD domain consolidation during M&As. It can often take weeks (even months) of effort from multiple IT teams to manage these transitions, and risks abound during the process: end users don’t have access to the tools or resources they need; the company’s security posture is at stake when it’s reliant on the security of its weakest link. Not only is there often a lack of trust established between these disparate user stores, it also becomes a challenge to align local IT operations with those managed by the centralised head office IT team.
The result is that time-strapped teams often look for help in the wrong places—expensive consultants, complicated migration tools, overpriced security reviews, or hours and hours of invested effort by team members whose time could be better spent elsewhere.
There’s a better way. Okta provides a central identity management system to integrate users across different organisations. This allows you to transform your technology stack, create flexible autonomy and efficiency for shared sources, improve performance for end users, and provide oversight and visibility for your teams. The result? An M&A process that’s both repeatable and efficient.
A better solution for AD domain consolidation
Okta’s Universal Directory enables companies to connect an unlimited number of directories and bring legacy data to the web, with no need for AD forest trusts or firewall holes. For example, you may have an environment with multiple AD domains—some trusted, some untrusted. With Okta, you install an AD agent behind the firewall (two for built-in high availability) and Okta will manage these directories from a central admin console.
Of course, data migration is rife with complexity as user information exists in multiple sources and formats. Once Okta is installed, you can run an import to bring any existing users and AD groups into Okta. Okta allows you to transform, manipulate, and apply logic to AD attributes, ensuring your data is clean and reconciled during the process.
Once you install Okta’s AD agents, remote agents authenticate with an AD username and password, while local users can be set up for integrated authentication. Once the user is authenticated to the AD domain behind the firewall, Okta will pick up on that and authenticate them into the cloud and the applications they need.
After you have imported users and groups into Okta, you can begin to grant them access to applications. Your security policies in AD are automatically mapped into Okta, allowing you to configure what applications different users have access to directly from the central admin console. A new user is given a new Okta portal page. When they log-in, they instantly get access to all of the applications and tools they need to do their work and collaborate with their new team members, no matter where they are.
The Okta Integration Network also offers over 7,000 pre-built integrations with different applications. This means that during an M&A, if you have a new company that comes in with a new set of applications, you can either switch their apps with some that you already have, or quickly bring their apps into your own environment rather than taking a month to integrate each one.
Success in practice
Okta is the trusted identity partner for thousands of enterprise companies, helping many of these customers handle M&A transitions efficiently and securely.
News Corp: Greater than the sum of its parts
News Corp comprises a huge range of businesses, from news and information services to real estate, book publishing, digital ad tech and cable network programming. The company has over 25,000 employees worldwide. Some of its acquisitions include Move, Inc. (an online real estate network); Unruly (a social video ad platform); and VCCircle (a digital data and venture capital network).
When Dominic Shine became CIO in 2013, each company was using its own technology strategy and tools. The IT environment patched together numerous SSO solutions, giving users multiple pins, tokens, and access points to keep track of. “Identity was a real impediment to productivity,” says Shine. “Security access to systems was cumbersome. People were unable to work easily when they were not in the office. This was a major issue for a company that needs to be always on 24/7.”
The goal was to give the team the right collaboration tools while ensuring all business units were on a common platform, allowing them to work together to best serve external customers. Okta now provides that single point of entry to their apps and has transformed how News Corp onboards newly acquired companies. Using Okta’s Universal Directory as the single source of truth, the company has saved over 1,000 hours each year on synchronising and consolidating domains after M&A activity. Employees have access to the apps they need two hours sooner than previously allowed.
“There are very few times in IT that you come across a silver bullet,” says Ramin Beheshti, SVP Enterprise, Dow Jones, who is partly responsible for the pri