How a global real estate company strengthened MFA with Authsignal

The challenge

A leading international real estate company needed to modernise multi-factor authentication for employees across Australia, New Zealand, and South Africa. All staff use Azure AD B2C to access internal and third-party platforms, but their existing MFA setup, limited to email and SMS one-time passcodes, was no longer meeting their security requirements.

The company wanted stronger authentication methods, more granular control over when and how MFA is triggered, and a migration path that wouldn’t disrupt employees across multiple regions.

Why Authsignal

Inde led the vendor evaluation on behalf of the client, assessing several MFA providers. Larger platforms were either too expensive, too complex to implement, or offered limited commercial support. Authsignal offered the right balance of security capability, flexibility, and commercial terms:

• Flexible pricing with no long-term contract lock-in
• A no-code rules engine that allows non-technical staff to manage policies, including periodic MFA requirements, impossible travel detection, and country-based login blocking
• Native Azure AD B2C integration with comprehensive documentation, enabling deployment in a matter of days
• A broad range of authentication methods beyond SMS and email, including passkeys, biometrics, and WhatsApp one-time codes

The rollout

Inde designed and implemented the solution in phases to minimise disruption. South Africa was onboarded first, followed by New Zealand and Australia. Custom MFA policies were configured using Authsignal’s rules engine to address each region’s security and compliance requirements. The solution was tested across multiple scenarios before each phase went live.

The full deployment was completed within two months. No technical issues were reported and employees adapted quickly.

‘Technical implementation of Authsignal was super quick and easy. They have really great documentation on how to implement the solution for B2C and I’d recommend it to any B2C client needing to uplift their security.’

Zade Fairweather, Technical Specialist, Inde

Results

• Strengthened MFA security posture across all three regions
• Broader authentication options including passkeys, biometrics, SMS, email, and WhatsApp codes
• Non-technical administrators can manage and update policies without engineering support
• Fully operational within two months with no reported issues
• Flexible commercial terms with no long-term contract commitment

‘What stood out with this implementation was how quickly the team moved from evaluation to go-live. Deploying phishing-resistant MFA across three countries in two months, with no reported issues, is a strong result. It’s a great example of how organisations can strengthen their authentication security without overhauling their existing identity setup. Working with Inde made the rollout seamless from day one.’

James Wood, Market Development and Growth, Authsignal

About Authsignal

Authsignal adds sign-in flows, step-up authentication, fraud signals, and recovery to your existing identity infrastructure, across web, mobile, call centre, and beyond. Designed as a drop-in solution, it integrates seamlessly with identity providers like Azure AD B2C and uses a powerful no-code rules engine to balance strong security with excellent user experience.

About Inde

Inde is an employee-owned, cloud-first consultancy that helps enterprise organisations scale, transform, and stay ahead. The company was founded to challenge how IT is delivered and to bring clarity to complex environments. Inde’s specialists work directly with clients, design solutions that fit, and focus on outcomes that move the business forward. The team is trusted by some of Australasia’s most ambitious organisations and partners across strategy, delivery, and ongoing support.