Skip links

Leveraging multi-cloud framework for one common identity across AWS and Azure

The Challenge

The education customer came to Xello needing to implement a multi-cloud identity framework solution that extended their existing cloud environment to Amazon Web Services (AWS) and Microsoft Azure, and provided secure and seamless access when staff need to work in either.

The main problem the customer faced was they could not meet growing service requests for cloud resources. They also lacked a common identity for each user to use across both cloud platforms, as their existing multi-cloud environment and identity system was completed ad-hoc and manually, without standardisation or automation of processes. This made it hard for IT to consistently support internal requests, provide access and control security.

Client type:





AWS Well-Architected Review

The Impact

From a billing and visibility perspective, the university found it difficult to work out which department was paying for what cloud deployment, who was using what resource and how to do cost allocation, leading to resource wastage. They also had no efficient way for all teams to access reports and lacked automated reporting of resource usage. With major growth on the horizon, these problems would only become more urgent.

The university recognised in order to get a secure multi-cloud environment that could handle more business cases, streamline access with one common identity and provide billing visibility, they required a consultant with experience in building, testing and deploying multi-cloud environments, and strong network infrastructure that would ensure compatibility with current and upcoming infrastructure projects.

The Outcome

We provided this customer a detailed multi-cloud architecture design and implementation that extended their existing environment into both AWS and Microsoft Azure. The multi-tenancy framework covers automation, deployment, security, tagging and topology, allowing them to provision production-ready services in both clouds faster – while following best practices.

The multi-cloud solution provides seamless integration with the university’s existing Azure Active Directory (AD) identity management system and now uses Azure AD as the identity provider for both their Azure and AWS cloud accounts, giving employees a single and secure login that works for resources hosted in both environments. Staff can also directly access AWS environments via the Azure Portal, and there is full automated reporting on resource usage in both cloud environments, improving overall visibility.