Hongkong Land Streamlines Staff & Partner Access with Authgear

Hongkong Land set out to modernize authentication as part of its digital transformation. The challenge: deliver a unified, secure experience for two very different audiences, internal staff and external partner agents, without long rollout cycles or added friction. With Authgear, they launched a dual‑audience authentication system featuring ADFS sign‑in for staff, email/password + 2FA for agents, mobile biometrics for both, and admin automation, delivered in weeks, not months.

‍

At a glance

• Industry: Property investment, management & development
• Users: Internal employees and external partner agents
• Use case: Unified workforce/partner authentication
• Auth methods: ADFS for staff, email/password + 2FA for agents, biometric (Face/Touch) for mobile‍
• Outcome: Faster rollout, lower IT overhead, stronger security with less friction

‍

The Challenge

• Two audiences, one system: Serve internal staff and external agents with distinct requirements
• Security vs. speed: Balance strict compliance with rollout timelines that traditionally took 3–6 months
• Tailored login flows: Provide different but coordinated authentication paths for each group
• Mobile‑friendly access: Reduce friction under stringent password rules‍
• IT efficiency: Lower the operational burden of user and policy management

‍

The Solution: A Dual-System Built for Security and Usability

Authgear enabled a dual‑system approach that unified security controls while tailoring UX to each audience:

1. Integrated authentication for internal and external users
   Staff authenticated via ADFS, leveraging corporate credentials. External agents used email/password with Two‑Factor Authentication (2FA)—all within a single platform.
2. Complex password policy
   Enforced group‑wide requirements—mandatory resets, password history, and strength rules—while preserving flexibility where needed.
3. Biometric authentication for mobile
   Face/Touch ID reduced friction for both staff and agents, complementing strict password policies.‍
4. Streamlined user management via Admin API
   Granular control over users, roles, and authentication settings cut manual admin work and simplified operations.

‍

The Results: Enterprise-Grade Security, Delivered in Weeks

• Enterprise‑grade security, delivered in weeks—not months
• Zero‑trust posture with role‑based access across user groups
• Faster, easier mobile login via biometrics under strict password rules
• ADFS + 2FA handled complex, mixed‑audience scenarios seamlessly
• Lower IT overhead through Admin API automation and centralized policies‍
• Scalable architecture ready for future integrations

‍

Why Authgear

• Speed + flexibility: Tailored flows for staff and partners without long rollout cycles
• Enterprise security: 2FA, advanced password policies, and centralized enforcement
• Mobile‑first UX: Embedded, branded experiences with Face/Touch ID‍
• Operational control: Admin API for automated provisioning and policy management

‍

Feature highlights

• ADFS integration for corporate sign‑in
• Email/password + 2FA for external agents
• Biometric login (Face/Touch) for frictionless mobile access
• Complex password policies (resets, history, strength)‍
• Admin API for user/role lifecycle and policy control