In 2020, we started looking for solutions to simplify the process of user login on end devices. The hospital environment is very specific, with a large number of computers shared by up to dozens of users.
The Imprivata project started with us as a PoC and immediately became a very popular part of the operation. It makes it significantly easier to log into applications - using an employee ID card - and also helps us meet the Cyber Act requirements for multi-factor authentication. The benefit of the new solution was significantly demonstrated during the covid pandemic, when hygiene compliance became an even more pressing issue. At a time when healthcare workers spend most of their working hours in protective suits, card logging is somewhat impractical. That's why the supplier came up with an improvement - replacing the cards with contactless wristbands.
Baseline and project objectives
This brought with it two fundamental problems. One is the number of applications and web services that needed to be logged into constantly. The second is the large number of so-called shared computers - these are found, for example, in examination rooms or nurses' stations where staff change frequently during working hours and where repeated logging in and out of or into the operating system took up a lot of time.
This way of working has become unsustainable in the long term. Users resorted to not logging off the computer. This allowed multiple users to work under someone else's identity.
The Jihlava hospital decided to purchase a solution that would enable the use of existing employee ID cards (tags used for the access system, parking lot entry or ordering meals) for authentication to the entire application environment. The goal was to provide a high level of security in accessing applications while also dramatically speeding up logins and logouts.
- Secure access to health records,
- saving users' time when working with PCs,
- making it easier and faster to log in to computers and applications,
- reducing the number of requests to reset forgotten passwords,
- eliminating the need to remember multiple passwords for different applications,
- two-factor logins to computers as an effect of deploying the solution.
Logging in and out takes a few seconds - simply by placing the card on the reader, the user is "switched" from the existing user to the new one. At the same time, the SSO (Single Sign-On) module works, which automatically logs the user into applications (FONS Enterprise, PACS, JIVEX, Lekis, LIMS, Operis and others), without the need to enter the login name and password from the keyboard. The endpoints are in "hybrid Azure AD join" mode, which means they are both members of the on-premises Active Directory and Azure Active Directory. This enables seamless (SSO) logins to applications running on Microsoft Azure and Microsoft 365 platforms as well (Word, Excel, OneDrive, Outlook, Teams, etc.).
The pilot deployment in the surgery department and the immediate positive feedback from healthcare professionals has raised a wave of interest in other departments. The extremely positive reception by pilot users helped to speed up deployment in other parts of the hospital.
In the next stage, Self-Service Password Reset was introduced. The user can change a forgotten password or PIN by himself without having to contact the Helpdesk. The high availability of the solution has also been successfully increased - a third Imprivata OneSign server is now running in the Microsoft Azure cloud. This makes the solution resilient to an entire data center outage. The plan for the next stages includes the deployment of Imprivata Mobile Device Access (MDA) to access patient records from Android mobile devices. In addition, a gradual expansion of the Imprivata solution for specific application areas such as tablets in operating rooms is underway.
The use of IT services has been crucial for Jihlava Hospital, especially in the covid era, when they were able to streamline their work. By using the Microsoft 365 platform, patients were able to use Microsoft Forms to fill in short questions about their health status, which were then evaluated by Microsoft Flow. This resulted in the elimination of patient contact with symptoms and an overall reduction in the number of patients waiting outside the hospital. This reduced the need for staff to deal with administrative issues and allowed them to focus on the actual treatment of patients. From the Microsoft 365 ecosystem, Jihlava Hospital uses Teams, Power BI, Logic Apps, etc. in addition to the aforementioned applications. By limiting personal contact and creating a digital environment, the smooth running of the hospital was maintained and the safety of not only patients but also employees was ensured.
- Imprivata OneSign®
- Imprivata contactless Mifare® card readers
- Microsoft 365 (Forms, Flow, Teams, ...)
You May Also Like
- The first four companies adopt the new name Aricoma
- We have joined the EDIH NORTHEAST BOHEMIA consortium’s digitalization project
- Kofola has cybersecurity under control
- Companies in KKCG's technology pillar are changing. Qinshift to be spun off from Aricoma
- BUDVAR systematically increases its cyber security
- Security and remote management of thousands of commissioners' mobile devices for Census 2021
- Simple, secure and unified network management at Zeelandia
- Secure handling of sensitive data for the Magistrate of the City of Ostrava
- Efficiency through Identity Management for Palacký University in Olomouc
- IT infrastructure protection for the Olomouc City Transport Company
- Secure management of corporate network and user rights from the cloud for LetsGetChecked
DO NOT HESITATE TO
Are you interested in more information or an offer for your specific situation?