CUSTOMERS / TOP STATE GOVERNMENT INSTITUTION

Securely updating ‘impossible to update without breaking’ application

“With Strata, we can update application access at our pace. If we need to follow strict, predefined patterns, they can do that — but they’re also ready to flip the whole model on its head if that’s what we need.”

— Identity and Access Program Director; State Government Institution

A leading state government agency updated access to a critical application and strengthened security with modern authentication.
Updated app access

Modernized a highly sensitive, problematic application in four working sessions.

Reduced tech debt

Retired a legacy IDP and gained autonomy over cloud identity providers.

Identity first security

Hardened security with multi-factor authentication even on legacy applications.

THE CHALLENGE

A critical HR app proved impossible to modernize

The State identity team had a problem: one of the mission-critical apps their HR team relied on was non-standards based. It used a legacy IDP that was no longer supported by the provider.

To keep using the app, the team had to transition it to a cloud-based IDP and secure it with multi-factor authentication (MFA). If they didn’t, the personally identifiable information (PII) in the app would pose a major security risk. They tried to modernize the traditional way by refactoring with a well-known identity and access management solution. This marked the start of an eight-month-long project.

But there was a problem. User information wasn’t being carried all the way through; it was getting lost post-authentication. So after a grueling attempted modernization process filled with daily calls (and costing millions of dollars), the app was still stuck.

“We had a mission-critical app that didn’t fit the mold—and Strata helped us bring it into a modern access framework without rewriting a single line of code.”

THE SOLUTION

Secure the impossible app with Identity Orchestration

The State team had to find a different option. That’s when they found Strata and learned about Identity Orchestration. The Strata team immediately understood the modernization challenge facing the State team and used Maverics to solve the unmanageable app problem in just four working sessions.

Here’s how they did it: the Maverics Orchestrator acted as a proxy, sitting in front of the legacy HR app. This allowed the team to add MFA to a vulnerable app without refactoring. Identity Orchestration with Strata didn’t just solve this HR app’s identity issue — it allowed the State team to use Identity Orchestration to secure other mission-critical apps, eliminating future modernization challenges.

“Retiring our legacy IDP felt like a huge lift, but Strata made it possible to move at our own pace while strengthening our security posture along the way.”

THE OUTCOME

Retire the legacy IDP and effortlessly secure multiple apps

By using Strata’s Identity Orchestration, the State flattened complex authentication hierarchies and gave its IAM team full control over modernization — without disrupting users or involving app owners.

The first step was securing a mission-critical HR app, followed by a broader rollout across other departments. Strata’s solution was a strong fit for the State’s distributed structure, allowing each department to move independently while maintaining centralized oversight.

Key outcomes:

  • Gained IAM team control over app modernization

  • Secured critical apps without disrupting users or app owners

  • Enabled decentralized departments to modernize independently

  • Increased IDP autonomy and overall identity security

“With Strata, we can update application access at our pace. If we need to follow strict, predefined patterns, they can do that — but they’re also ready to flip the whole model on its head if that’s what we need.”
Industry
 State government
Employees
 50,000
Use Case
IDP rationalization
Pain point
Non-standards based HR apps used a legacy IDP that was no longer supported by the provider
Identity services used

Create your own story

RECOMMENDED FOR YOU

Read more stories like this one

Customer story
Top state government institution

How a state government institution secured its ‘impossible to modernize’ HR application
Customer story
Global telecom service provider

How this global telecom service provider modernized a business critical portal
Customer story
Global manufacturer

Discover how a Fortune 100 manufacturing company leveraged Strata’s Identity Orchestration to ensure a seamless migration from ForgeRock to Okta, and achieve identity resilience and continuity.