Exec Summation
OkCupid simplistic the multi-membership term and availability management and you may improved cover when you’re protecting go out and money that with AWS. The online dating site and you may application began moving from its to your-properties systems so you can AWS, and also to care for a central part off supply because of its individuals AWS levels, they made use of AWS SSO near to AWS Spouse Okta’s Common Index, deploying an alternate intent behind AWS SSO in two weeks. The answer automates representative membership creation and you will setting, decreasing the danger of human error and you may increasing defense. Once the migration, new slim operations people can be desire its time to the improving the consumer experience to own OkCupid’s scores of pages making important relationships.
Developing an approach to Express Multi-membership Management
OkCupid, one of the biggest free adult dating sites and software, prioritizes securing the private analysis of their countless profiles and come up with significant associations. When you look at the 2016, the business helped safe the backend by the centralizing identity and you may accessibility government (IAM) having Okta Inc, a major label and you will shelter providers and you will Amazon Online Features (AWS) Mate. Into the middle-2020, OkCupid began moving from the with the-premises system to AWS, where it created a solution to further describe multi-account government: playing with AWS Solitary Signal-On (AWS SSO) along side Okta’s Common Index.
AWS SSO centrally takes care of access to multiple AWS profile and you can team apps. That with AWS SSO next to Okta, end users have access to almost all their assigned AWS account and you will programs in one location, simplifying availableness government to have end users and you will administrators. Now OkCupid can be scale-up the AWS footprint and you can benefit from different qualities instead a rise in management really works. Using this type of service, OkCupid keeps highest protection, saves money and time, and you can takes care of employee levels and you may permissions with ease.
“AWS SSO is an effective equipment to find the limit amount of use per employee making sure that we can keep our cluster brief.”
Maintaining an individual Entry point to possess Numerous AWS Membership
OkCupid operates around the globe and really should conform to numerous research conformity regulations such as the European Union’s Standard Investigation Protection Controls. But the organization goes beyond compliance to guard user investigation. “To activate properly on the software, pages need to let you know their extremely personal selves, like gender label and you will governmental beliefs,” shows you Alexander Dumitriu, Captain Recommendations Officer at the OkCupid. “We take the purpose to protect our very own users’ guidance really positively.”
Ahead of OkCupid began playing with Okta during the later 2016, it encountered pressures looking to centralize IAM for the with the-premises environment. Staff before was required to join separately to every ecosystem, definition they’d to keep track of multiple passwords. Directors must repeat setup into 
the for every single membership, a period of time-drinking processes. “When you’re going after down multiple urban centers to include or clean out a beneficial user, you’re not only wasting time as well as enhancing the possibilities one to possible miss some thing,” states Dumitriu. “Which is a protection question.” Okta written one lay where OkCupid you may enforce guidelines, do users, and you can accessibility permissions around the several name silos. “We love an individual expertise in Okta, like Okta Verify’s force-based a few-foundation verification,” states Dumitriu. “It is more secure than Text messages and higher than simply finding out almost every other authenticator application.” By using AWS SSO and you will Okta, OkCupid could probably retain the advanced off features and you will simplicity of restoration this has struggled to reach.
Whenever OkCupid chose to benefit from the measure and you may speed you’ll throughout the affect, the ability to integrate AWS SSO with Okta starred a button part in choice so you can migrate to help you AWS. OkCupid planned to make use of the full-range out of AWS services, but who end up in an intricate spread regarding AWS account that, when the accessed . The fresh new organizational speed regarding AWS SSO and Okta set that state. “AWS enables us getting a central account in which i would our very own users without the limitation going during the and you may arrange for each account one after another,” claims Lou Benlahmr, elder infrastructure professional within OkCupid. “They decreases government some time and provides much more profile and you can a great a whole lot more granular treatment for would access to other accounts.”
