Ad Image

Identity Customer Case Study – Global Law Firm by Optimal IdM

The Solutions Review First-Ever IAM Insight Jam Recap

Identity Customer Case Study - Global Law Firm by Optimal IdM

As part of the first-ever Solutions Review IAM Insight Jam, we’ve asked solution providers to share their customer success stories and case studies. Here, identity and access management provider Optimal IdM shares an identity customer case study concerning a global law firm. Check it out!

Download Link to IAM Vendor Map

About The Company

The company is one of the largest law firms in the world with lawyers located in more than 40 countries and clients ranging from government agencies, Global 1000, and Fortune 500 enterprises to emerging companies developing industry-leading technologies.


The firm needed to sync enterprise-wide data with unified email management provider, Mimecast. Because Mimecast requires a single directory to sync with, it was necessary to consolidate the active directories (ADs) throughout the law firm.

The firm is comprised of numerous independent operating entities located across the globe. Each entity is administratively autonomous, and each has its own unique AD forest. The law firm needed to have the ability to synchronize objects from each entity’s on-premises domain into a Universal Directory to create a consolidated view across all of the enterprise’s forests.

To do this, many objects, like proxy addresses and UPN’s, needed to be manipulated. However, as with any multi-forest environment, there are always discrepancies in the data across those forests. Especially when each forest is managed by separate entities.

The law firm chose to host its Universal Directory in a cloud environment to support Mimecast security, continuity, and email address rewrite specifications.

The Universal Directory structure was designed to provide each regional source domain with its own root level directory container. Then using the standard provisioning SCIM protocol, data is pulled into the Universal Directory.

The Universal Directory requires specific attributes to support the Mimecast synchronization agent. Additional attributes could be configured within Mimecast to be included as part of the synchronization process. This structure facilitates a simplified configuration for the Mimecast synchronization agent.

In addition, the user interface of the cloud solution allows administrators to search and view the properties of objects in the Universal Directory before, during and after synchronization.

The following diagram represents the domain synchronization between the multiple AD forests, the Universal Directory and Mimecast.


The ability to host the customer’s Universal Directory within a cloud environment has been a gamechanger when it comes to interacting with Mimecast. The customer can now confidently and securely provision multiple AD Forests on any scale and provide flexibility to grow in new directions.

How to Learn More

Thanks to Optimal IdM for this identity customer case study! For more, you should check out our update Identity Management Buyer’s Guide! We cover the top solution providers and their key capabilities!

Widget not in any sidebars

Share This

Related Posts