Developing Single Sign-On (SSO) Authentication for Secure Electronic Health Records

Developing Single Sign-On (SSO) Authentication for Secure Electronic Health Records

Peritus Health Management partnered with NewRedo to implement a modern Single Sign-On (SSO) solution to their existing EHR system. The project enabled users to log in using Microsoft Azure or Google Workspace credentials, while retaining traditional username-password options during a phased transition. The solution introduced Multi-Factor Authentication (MFA) for enhanced security while considering the diverse cohort of users required to adopt the enhanced security posture. Careful development and directory synchronisation ensured compatibility, while a phased rollout avoided operational disruption. The result was a secure, scalable authentication system that improved user access, reduced password-related support costs, and modernised Peritus’s operations.

Home Case Studies Developing Single Sign-On (SSO) Authentication for Secure Electronic Health Records
Developing Single Sign-On (SSO) Authentication for Secure Electronic Health Records

Peritus Health Management

Peritus Health Management is a nationally recognised provider of occupational health screening and surveillance services. They specialise in delivering comprehensive healthcare solutions tailored to various industries. Their services include health risk assessments, medical examinations, health surveillance programs, advisory and consultancy services, data management and reporting, and training and education. Peritus Health Management plays a crucial role in safeguarding employee health and well-being, assisting organisations in maintaining a healthy workforce, complying with regulations, and promoting a culture of well-being in the workplace.

Project Introduction

Peritus Health Management partnered with NewRedo to implement a modern Single Sign-On (SSO) solution to their existing EHR system. The project enabled users to log in using Microsoft Azure or Google Workspace credentials, while retaining traditional username-password options during a phased transition. The solution introduced Multi-Factor Authentication (MFA) for enhanced security while considering the diverse cohort of users required to adopt the enhanced security posture. Careful development and directory synchronisation ensured compatibility, while a phased rollout avoided operational disruption. The result was a secure, scalable authentication system that improved user access, reduced password-related support costs, and modernised Peritus’s operations.
Developing Single Sign-On (SSO) Authentication for Secure Electronic Health Records
Project Challenge

The implementation of the SSO solution presented several challenges. Integrating with an existing system without the supporting authentication protocols such as SAML and OpenID Connect required custom development and architectural redesign. The diverse user base, including users with mixed digital skills and in-the-field or site workers, added complexity to the rollout. Enhancing security by introducing Multi-Factor Authentication (MFA) without the cost and complexity of complete custom development was another key challenge. Ensuring operational continuity during the transition was critical, requiring a phased rollout to minimise disruption while providing time for user communication and training. Additionally, the project needed to reduce reliance on traditional username-password authentication and add access for users without corporate credentials. These challenges demanded a carefully planned approach to ensure a seamless and secure migration.

Our Solution

The Single Sign-On (SSO) solution for the Peritus EHR and practice management integrated Microsoft Azure Active Directory and Google Workspace Directory into their existing system, providing users with a seamless and secure authentication experience. To address legacy system compatibility, middleware was developed to bridge gaps with modern protocols such as SAML and OpenID Connect. Directory synchronisation ensured consistent user data across platforms, while Multi-Factor Authentication (MFA) was introduced through Azure and Google policies to enhance security without custom development. The phased rollout allowed for careful user communication and training, minimising disruption and ensuring a smooth transition. The solution supported both corporate credentials and traditional username-password options, catering to a diverse, mobile user base with varying levels of IT proficiency. This approach delivered a scalable, secure, and user-friendly authentication system, modernising access management while reducing operational costs.

Positive Customer Outcome

The new SSO solution delivered significant business benefits for Peritus Health Management. Enhanced security through Multi-Factor Authentication (MFA) and reduced reliance on passwords minimised the risk of unauthorised access, while centralised authentication improved compliance with data governance regulations. Users benefited from a streamlined login process, reducing frustration and increasing productivity, particularly for mobile and field-based workers. Operational efficiencies were realised through a dramatic reduction in password-related support requests, lowering IT costs and freeing up resources. The phased rollout ensured minimal disruption, allowing for a smooth transition that maintained business continuity. By modernising access management, the organisation improved user satisfaction, strengthened customer relationships, and established a scalable foundation for future growth and integration with new technologies.

Project Skills
SSO MFA SAML OAuth OIDC Idp RBAC Azure AD AAD Connect Google Workspace Directory LDAP GCDS API Design JWT Postman SAML-Tracer Security Architecture Cloud Infrastructure Solutions Architecture Technical Project Management Agile Delivery Management