Identity and Access
Management System
for Healthcare Professionals

“Exadel customized and implemented open source access and identity management technologies, improving clinician productivity. This allowed physicians, nurses, and caregivers to focus more time on patient care.”

Our Customer
Senior Director of Information Security Architecture

About the Customer

Our customer is one of the premier healthcare services companies in the United States, and plays an integral role in the industry. The company serves more than 50% of American hospitals, 20% of physicians, and 100% of health plans. As a major pharmaceutical distributor in North America, it delivers a considerable percentage of all medications used in the region every day.


Our customer’s applications are used by a diverse group of people. To better serve their users, the company wanted to radically improve efficiencies while meeting industry-specific security and regulation requirements.


Exadel partnered with the client to implement a comprehensive set of security solutions including Corporate Active Directory SSO (single sign-on) and Identity Management UI. The solution is an identity and access management system designed to manage user records in an Active Directory when creating records in a specialized HR system that stores employee information. Once the information about a new or departed employee is received, or they are moved to a new unit, the user record is updated automatically in AD and a new email address is created (or deleted). Additionally, the support system RemedyForce creates a ticket to manually make changes.

There are a few generations of this identity management system. Exadel is now developing a new one based on Okta Workflows and Java microservices.

Exadel has an extensive security background and was able to quickly put together the best-suited technology stack to meet our client’s security needs:

  • OpenAM (access management, entitlements, and federation server)
  • OpenDJ (directory server)
  • OpenIDM (identity management system)
  • LDAP (Lightweight Directory Access Protocol)
  • WS-Security (secure web services extension to SOAP — Simple Object Access Protocol)
  • Federated security
  • SAML (Security Assertion Markup Language)
  • STS (Secure Token Service)
  • OAuth (authentication protocol)


The business impact of the security solutions greatly surpassed the customer’s expectations. The outcome met and exceeded each goal: high-quality valuable access and management system, reduced costs, improved efficiencies, and high end-user satisfaction.