Technology Services Firm's M&A Identity Integration

Overview

A leading technology services provider underwent a merger and acquisition (M&A) involving two client organizations. To ensure smooth collaboration and secure access during the integration phase, the identity team implemented an Okta Org2Org setup to connect the two client Okta tenants. This included custom routing rules, application username format changes, custom attributes, and multiple identifier support to enable flexible authentication and authorization.

Request an IAM Assessment

Talk to an Identity Expert

The Challenge

M&A Complexity – Integrating identity systems of two independent client organizations while maintaining business continuity.

Username Format Alignment – The two organizations had different naming conventions (e.g., first.last@domain.com vs. username@domain.com). A standardized application username format had to be enforced across the board.

Custom Attributes for Business Logic – Specific business data (e.g., division codes, legacy system IDs) needed to be added to user profiles for downstream applications.

Multiple Identifiers – Users required the flexibility to log in with email, employee ID, or legacy usernames without creating duplicate accounts.

The Solution

1. Okta Org2Org Integration

- Established secure SAML/OIDC connections between the two Okta tenants for seamless user provisioning and authentication.

- Implemented Group push to migrate groups.

2. Routing Rules for Multi-Domain Login

- Configured domain-based routing rules to direct users to the correct identity provider (IdP) automatically based on their email domain.

3. Username Format Standardization

- Changed the application username format in Okta to first.last@primarydomain.com across both orgs.

- Updated SCIM provisioning mappings to ensure consistency with downstream applications.

4. Custom Attributes

- Added custom user profile attributes.

- Updated profile mappings and transformation rules to populate these attributes from source systems.

5. Multiple Identifiers

- Enabled and configured Okta's Multiple Identifiers feature so users could log in with either: Corporate email address, Employee ID, or Legacy system username.

The Impact

Seamless Cross-Org Authentication

Users from both organizations could access shared resources without needing separate credentials.

Unified Identity Model

Consistent username formats and profile attributes eliminated mismatches in downstream applications.

Increased User Flexibility

Multiple identifier support improved login convenience and reduced helpdesk password reset tickets.

Simplicity

Operational Efficiency

Customer Satisfaction

Operational Efficiency

Want to be a part of Trevonix family?

See our Careers

Advancing enterprise security standards

Case studies of identity and access implemented in enterprise environments.

View All Case Studies

UK Bank Migrates to Modern Identity Management Microservices

Lorem ipsum dolor sit amet consectetur adipiscing elit semper dalar elementum tempus hac tellus libero accumsan.

Financial Institution Prepares for Trusted Digital Identity Integration

Lorem ipsum dolor sit amet consectetur adipiscing elit semper dalar elementum tempus hac tellus libero accumsan.

Companies we work with

“Trevonix brought the industry experience, technology expertise and proven best practices necessary to transform our legacy infrastructure to a standards-based, scalable architecture.”

Allica Bank

Head of IAM

“They very quickly managed to get a grasp of the legacy product and the target design, which has helped to deliver this release with top quality, where we have zero post release incidents, which is a rare feat for a release of this massive complexity.”

"Big 4" UK Brand

Identity Product Owner