Herman Miller is a globally recognized provider of furnishings and related technologies and services. Since its inception in 1905, it has evolved into Herman Miller Group, a family of brands that collectively offers a variety of products for environments where people live, learn, work, and heal. Headquartered in Zeeland, Michigan, the company operates manufacturing facilities in the U.S., China, Italy, and the United Kingdom, as well as sales offices, dealers, licensees and customers in more than 100 countries.
Director, Global Technology Operations
When the company’s technology operations team decided to deploy Microsoft Office 365, Microsoft Active Directory (AD) was the primary employee directory infrastructure for accessing applications. Herman Miller also managed other smaller AD domains, along with a large IBM Lotus Domino directory infrastructure with roughly 17,000 dealers requiring access to specific Herman Miller resources in IBM Lotus Domino.
As the team began adding cloud applications like Salesforce and Oracle HR to its Active Directory Federation Services (ADFS) environment, it discovered some shortcomings in their systems. For starters, it experienced the complexity and cost of setting up and maintaining ADFS as a highly available service. According to Rob Williams, Director, Global Technology Operations for Herman Miller, “ADFS was the only single sign-on (SSO) solution for Microsoft Office 365 at the time. It introduced unsustainable technical debt that put us at risk, especially with almost 50 of our corporate apps relying on it.”
Recognizing the need to streamline web application integration and app user support, Williams’ team evaluated Identity and Access Management solutions from Centrify, Okta and OneLogin. It selected OneLogin as their vendor of choice due to its large application catalog and superior customer service during the Proof of Concept (POC) stage.
Herman Miller first deployed OneLogin in 2013. It has since used OneLogin to support about 23,000 users (9,000 internal users and 14,000 external users). Williams’ team has established approximately 800 connectors on OneLogin and smoothly completed the SAML integration of nearly 300 custom web applications using OneLogin’s SAML Toolkits, supporting all five popular web development frameworks.
“We want relevant resources, best practices and guidance from security experts, and OneLogin provides that for us. It’s a strategic partnership,” says Williams.
Using OneLogin, Williams’s team has reduced the time to integrate and rollout large applications such as Oracle HR from 32 days to just 30 minutes. This savings is essential as Herman Miller adds employees from acquisitions to its Office 365 environment.
Before OneLogin, it cost Herman Miller roughly half a million dollars to bring the infrastructure of Nemschoff – an acquired company – online and about a month to integrate all its apps. When Herman Miller acquired Design With Reach – who previously used Okta – it was able to migrate the company’s 50 apps (half of which were SAML) in two weeks using OneLogin.
Herman Miller also benefits from stronger security. As Williams explains, OneLogin’s multi-factor authentication (MFA) prevents breaches of Office 365 by 99.9% every single day. “I’m incredibly passionate about the power of OneLogin. As a small IT team that is getting leaner by doing more, we need an easier way to ensure a higher level of security and we get that with OneLogin,” he says.
In addition, Williams’ team is taking advantage of OneLogin Enterprise Sandbox. “It’s priceless to gain an environment that fits our modern model of development, test, and production. We use the Sandbox to test before rolling out dramatic changes, such as requesting employees to use multi-factor authentication. It helps us to deploy new changes with confidence,” he continues.
Going forward, Williams wants every Herman Miller identity to exist in OneLogin as a single source of truth. “OneLogin enables us to move at the speed of the cloud, making it easy for my team to support our users’ dynamic application needs while meeting our company’s evolving security requirements,” Williams concludes.
OneLogin brings speed and integrity to the modern enterprise with an award-winning single sign-on and identity management platform. Our portfolio of solutions secure connections across all users, all devices and every application, helping enterprises drive new levels of business integrity and operational velocity across their entire app portfolios.