Optimize Your Microsoft IAM Solution with Microsoft Entra (Formerly Azure Active Directory)
In Partnership with iC Consult
3+
Years of Collaboration
30+
Successfully Delivered Projects
130+
Specialists at iC Consult
Our Services for Microsoft Entra Identity & Access Management
Building on our many years of experience in implementing sophisticated identity projects, we offer you customized services for Microsoft Entra, including:
The sustainable integration of Entra components into existing on-premises landscapes challenges many companies, especially in legacy environments where systems have sometimes been in use for decades. Outdated protocols and heterogeneous system landscapes that have grown over the years are difficult to reconcile with modern IAM requirements. Our experts have in-depth knowledge of Microsoft Entra, with years of experience in implementing a wide range of IAM products, and provide in-depth product expertise during integration.
Use all features at any time
Benefit from Microsoft’s broad IAM feature set: from MFA, Passwordless Authentication, SSO and SSPR to External Identities, Federation and OAuth to SCIM, B2C Journeys, Identity Protection, and Risk-Based Authentication.
Add-ons for complex problems
For particularly complex problems, whether Conditional Access Custom Controls, B2C Custom Policies, or Graph API, we develop custom code solutions and individual add-ons that precisely address your requirements.
Secure integration of legacy IT
In the cloud age, heterogeneous IT environments, older protocols and legacy IT also need to be seamlessly integrated and secured. We analyze your system landscape and develop resilient and customized solution concepts.
Integration of on-premises systems
Whether application integration or federation with proven solutions such as Ping Identity, ForgeRock, and others, we provide you with vendor-independent IAM advice and support for the seamless integration of your on-prem IT.
Guest users are a proven way to facilitate collaboration with external partners. However, you should be careful when collaborating with guests and allowing them to access internal systems. Without sound IAM and IGA processes, you can easily lose track of what access accounts and permissions external users have within your organization. Who is allowed to do what? And who has been invited by whom? Are there security gaps?
To enable centrally verifiable authorization processes, guest users must be consistently aligned with the requirements of your partner management and the associated policies. We provide you with strategic advice and develop customized solutions for handling external identities, showing you how to manage them efficiently and integrate them into existing landscapes.
Transparency about external identities
To integrate Microsoft Entra into your custom IGA tools, you must first classify your guests: Which categories of external identities need access to which of your systems?
Full control over the invitation process
Always maintain control over the onboarding of external identities and their access. Together, we align MS Entra optimally with the requirements of your business processes. Using additional IGA tools, we can also map more complex B2B administration processes.
Unambiguous identities
The level of Assurance: A B2B partner as the owner of a guest user account must be clearly identified in your network.
Clear identity policies
After defining partner categories, the next step is to develop clear policies for guest users and guest authorizations.
Use of existing internal and external identity providers
Innovative functions such as Federation can help you achieve this.
The number of successful cyberattacks is rising rapidly, with attackers using software vulnerabilities, poor identity controls, and insufficiently segmented networks to gain access to valuable data and cripple critical systems. This is a clear indication that traditional, perimeter-based strategies do not offer protection against today’s cyber threats. The answer is robust zero trust models that, when implemented correctly, can minimize the risk and consequences of account takeover sustainably.
Entra ID, as a consolidated directory service, provides the perfect foundation to authenticate users, devices, and processes using the zero trust model to control access to resources, applications, and services. Dynamic access management policies can be created in the Entra ID Admin Center and via API, which move coarse, network-based perimeter protection to identities, devices, and data. This enables you to effectively protect your systems, including privileged access management and regular auditing of access rights.
We are happy to help you make your existing infrastructure fit for zero trust and bring together all the necessary components with MS Entra ID.
Seamless security
Zero trust reliably prevents unauthorized access and lateral network movements, setting the course for up-to-date, granular protection of your systems.
Merging existing systems
Consolidating your directories in the central Entra ID simplifies the management of your identities, devices, applications, and access policies. This relieves your IT team and creates free space for innovation projects.
Conditional access policies
In Entra ID, access policies can be adapted exactly to the protection requirements of the respective resources. We are happy to support you in risk evaluation and the creation of individual policies.
Zero Trust Assessment: Set the Course for Maximum Protection
Implementing a comprehensive zero trust strategy across your organization involves integrating your existing legacy systems and hybrid components. Therefore, the first step is to put your entire infrastructure to the test to get a comprehensive overview of your status quo.
In a free introductory workshop, we validate and assess the maturity of your zero trust architecture together and answer a series of questions:
- Which aspects of zero trust have already been implemented?
- Are there gaps, and what are they?
- Which parts of the zero trust architecture could also be used for other areas of the company?
- How can open deployment options be addressed? (e.g., in an on-prem, cloud, or hybrid landscape).
- How can identity and access product stacks in use work together smoothly and provide added value?
Following the answering of all open questions, we support you in the next step, if desired, in the development of an implementation roadmap and the technical implementation of the catalog of measures.
Practical Insights
Entra-ID-Only Strategy
During the partial spin-off of a business unit, one of our major customers in the automotive sector had to bundle multiple directories into a consolidated Entra ID. We supported the implementation of an Entra-ID-only strategy and thus set the course for a much more efficient Identity & Access Management. As part of the project, we also advised the customer on migrating their IAM processes, their SSO realms, and their legacy applications to Entra ID and expanded their IAM feature stack.
User-Friendly Customer Identities
We assisted a well-known German energy provider in developing a consistent and efficient CIAM solution based on Entra ID B2C. The goal was to optimize the user experience for end customers and to make the registration and login journey as flexible as possible. To ensure that the customer did not have to replace their existing MDM (Mobile Device Management) systems, we developed individual custom REST functions and customized B2C journeys based on the B2C Custom Policy Extension Framework for their integration.
Secure B2B Collaboration Based on Zero Trust
At a major automotive company, we replaced the existing VPN-based B2B collaboration with a secure alternative based on Entra ID that follows a consistent zero trust approach and authenticates all access by employees and B2B guest users via MFA. Additionally, we enabled Entra ID Self Service Password Reset for employees.
Modern, Clear Access Management
A company in the chemical sector had an access management solution in place that required a lot of resources to manage due to some very specific use cases. We replaced it with Microsoft Entra ID, giving our customer much greater transparency over their access processes.
Your Microsoft IAM Solution in the Hands of the Leading System Integrator
As the complexity of modern networks increases, so do the requirements for up-to-date IAM. The optimal integration of your systems with Microsoft Entra requires structured planning and extensive, cross-vendor expertise. In-house IT teams usually do not have the necessary cross-vendor practical knowledge.
As the world’s leading consultancy and system integrator for Identity & Access Management, we are happy to assist you in all phases of your IAM projects. Together, we can identify the opportunities offered by using MS Entra and Entra ID, evaluate your current IAM architecture, integrate your legacy systems, and develop a concrete catalog of measures to unlock the full potential of the Microsoft solution. Even for complex problems involving MFA, passwordless authentication, SSO, or zero trust, we can provide precise solutions, including individual add-ons as needed.
Our Strengths:
- Microsoft experience: Microsoft Solution Designation for Security & Identity and Access Management Advanced Specialization
- IAM Excellence: Our consultants focus exclusively on Identity & Access Management
- Global presence: Europe, North America, Asia – we are familiar with all regional and industry-specific requirements
- High level of experience: After more than 25 years and countless successful projects, we are today the world’s leading IAM service provider
- Customer satisfaction: Our NPS score of 91 speaks for itself
- Highest standards: ISO 9001, ISO 27001, AICPA SOC 2
