At PODcom, we’ve spent years helping businesses across Hamilton, Waikato and throughout New Zealand strengthen their IT systems while keeping day-to-day operations running smoothly. One of the biggest shifts we’ve seen recently is the move to smarter, more secure identity management – making sure the right people have the right access at the right time, without unnecessary complexity.
The Challenge: Too Many Passwords, Too Many Risks
A client came to us with a common problem: their staff were juggling multiple passwords for different systems, and their remote access tools were starting to show their age.
This not only slowed people down – it increased the risk of phishing, credential theft, and unauthorised access. They needed a modern identity solution that could work seamlessly across both cloud and on-prem systems, and they needed it without a long, disruptive rollout.
Our Approach: Hybrid Identity That Works
We designed a staged, low-impact plan to modernise their identity systems, focusing on security, usability, and long-term scalability.
- Hybrid Microsoft Entra ID Deployment
We integrated Microsoft Entra ID (formerly Azure Active Directory) in a hybrid setup, connecting their on-premises environment to the cloud. This gave staff:- Single Sign-On (SSO) to both on-prem and cloud applications.
- Centralised user management and security policies.
- Fewer passwords to remember, reducing “shadow IT” risks.
- Multi-Factor Authentication (MFA) with Cisco Duo
To further secure access, we standardised MFA across all systems using Cisco Duo. This meant:- VPN and remote desktop access now required a second layer of security.
- SaaS applications were protected with the same consistent process.
- Legacy systems also benefited from the added protection.
- Passwordless Authentication Enablement
Finally, we implemented passwordless login options using biometrics (fingerprint, face recognition) and Bluetooth proximity detection via paired mobile devices. This removed one of the weakest links — the password — while giving staff a faster, smoother login experience.
The Outcome: Stronger Security, Happier Users
The entire rollout was completed with minimal downtime. Staff could log in more easily, IT overhead dropped thanks to centralised control, and the business dramatically reduced its exposure to identity-based cyber threats.
The improvements also helped accelerate compliance with ISO27001 and Essential Eight frameworks, future-proofing their security posture.
Our Identity Management Expertise
Every organisation has unique systems and needs. Our team has deep experience in designing and implementing secure identity solutions for:
- Hybrid Microsoft Entra ID (Azure AD) environments.
- Multi-factor authentication with Cisco Duo.
- Passwordless authentication technologies.
- Single Sign-On integration across mixed application landscapes.
FAQs
What is an “identity-based cyber threat”?
An identity-based cyber threat is an attack that targets a person’s login credentials or digital identity to gain access to systems and data. This includes phishing, stolen passwords, and compromised accounts – often allowing hackers to move through a network without detection.
What is Microsoft Entra ID?
Microsoft Entra ID (formerly Azure AD) is a cloud-based identity service that provides SSO, MFA, and centralised security policies for both cloud and on-prem applications.
Why is MFA important?
MFA (multi-factor authentication) adds an extra step to the login process, making it much harder for attackers to access accounts even if they have a password.
What is passwordless authentication?
Passwordless methods use secure alternatives like biometrics or trusted devices to log in — removing the need for traditional passwords entirely.
What is a “Shadow I.T” risk?
Shadow IT refers to software, apps or workarounds used by staff without approval from IT (e.g unapproved tools to store passwords). These tools often bypass security controls, creating hidden risks such as data leaks, compliance breaches and unmonitored cyber vulnerabilities.