Customer Requirement:
A multinational financial services company operating across legacy systems and modern SaaS platforms faced a critical challenge: no cloud directory could bridge the integration gap between their old and new systems.
They were evaluating cloud directories to modernize identity management, but most vendors only supported API-based integrations, leaving behind the numerous LDAP-dependent legacy applications still core to business operations.
The catch
- Fragmented Identity Management: APIs worked well for cloud apps, but legacy apps required workarounds or parallel directories.
- Manual Sync Effort: IT teams had to manually manage identities across LDAP systems and new cloud services.
- Delayed Onboarding: Provisioning users across both environments was slow, inconsistent, and error-prone.
- Security Gaps: Disconnected systems made real-time visibility and unified control impossible.
- High TCO: Maintaining two parallel directories meant higher costs and operational complexity.
They needed a cloud-native identity directory that could speak both API and LDAP fluently — without compromise.
How BAAR-IGA Solved It:
🔗 Dual-Native Integration: LDAP + API
Unlike most cloud directories that offer only REST or SCIM APIs, BAAR Cloud Directory was built with native support for both LDAP and modern APIs, making it the perfect hybrid enabler.
It allowed the customer to:
- Connect legacy on-prem apps via LDAP without modifications.
- Integrate modern cloud apps through REST APIs for real-time, scalable identity operations.
- Maintain one central cloud directory for both environments, reducing duplication and sync lag.
⚙️ Unified Identity Store Across Hybrid Environments
BAAR Cloud Directory became their single source of truth, supporting:
- Seamless user provisioning and deprovisioning across legacy and modern apps.
- Unified role and group management across LDAP and API endpoints.
- Policy enforcement and visibility across all identities, regardless of platform.
It also enabled smoother transitions from on-prem directories like Active Directory, minimizing disruption.
📊 Streamlined Security and Operational Excellence
The customer gained:
- Real-time visibility into user access across all systems.
- Immediate access revocation for any user, anywhere.
- Improved audit posture through consistent, centralized logging and compliance reports.
- Lower costs and simplified management, with no need for parallel tools or custom sync scripts.
The Result?
- 100% coverage for all applications — old and new — from a single cloud directory
- LDAP-based legacy app support without retiring or re-platforming
- 60% reduction in provisioning time and identity sync effort
- IT operational cost savings by eliminating parallel infrastructure
- Stronger compliance through unified identity governance
- A scalable foundation for zero-trust and cloud-native identity architecture
With BAAR Cloud Directory, the customer didn’t have to choose between modern flexibility and legacy support — they got both.
