How Hideez helped the Agency for Restoration build a unified system for secure access
The implementation of Hideez solutions at the State Agency for Restoration and Infrastructure Development of Ukraine helped build a secure, unified access system for dozens of critical government services and improve the efficiency of more than 1,000 employees. This case demonstrates how modern passwordless authentication and Single Sign-On (SSO) technologies enable public institutions to strengthen cybersecurity, simplify user experience, and lay the foundation for further digital transformation.
Organization profile
Industry: Public administration and infrastructure development Employees: Over 1,000 staff across the central office, regional services, and subordinate enterprises
The State Agency for Restoration and Infrastructure Development of Ukraine is a central executive authority established in 2023, based on the former Ukravtodor. Its activities extend far beyond the road industry. Today, the Agency coordinates projects to restore residential, transport, energy, and social infrastructure across the country.
Its key areas of activity include
Challenges
Large-scale digitalization of the Agency’s processes required not only IT infrastructure modernization but also a higher level of protection for access to critical systems. Each subordinate enterprise had its own IT environment, creating the need for a single, unified ecosystem with centralized security policies, monitoring, and access control.
Key objectives included:
Maintaining the balance between security, usability, and system performance was also a critical challenge.
“The use of IT infrastructure can be visualized as a triangle, with comfort, efficiency, and security at its corners. For us, it is important to stay in the middle of this triangle, maintaining balance between all aspects,”
notes Roman Komendant, Deputy Head of the State Agency for Restoration and Infrastructure Development of Ukraine for Digital Development, Digital Transformation, and Digitalization.
Beyond technical difficulties, changing user behavior was another challenge. The transition to passwordless authentication was initially met with reluctance — employees were hesitant to install apps on personal devices or use hardware keys. However, these changes ultimately became the foundation for a new cybersecurity culture within the Agency.
Choosing the solution
Before implementing Hideez, the Agency used several authentication methods, including Google Authenticator, qualified electronic signatures (QES), and OTP codes via email. Each system required a separate configuration, complicating administration and creating inconsistent security levels across departments.
Recommendations from a technical audit prompted the search for a new solution. The report advised transitioning to modern authentication approaches, namely SSO, two-factor authentication, and passwordless access. This is when the Agency turned its attention to Hideez.
Features of Hideez● Passwordless Single Sign-On (SSO) ● Passwordless multi-factor authentication (MFA) ● Admin dashboard for identity management ● Smart endpoint authentication (Proximity-based login & logout) ● Password-based authentication and TOTP ● Remote access to servers and desktops ● Integration: On-premises Active Directory, Azure AD, API, MS SQL, My SQL, SIEM
Implementation
Hideez enabled users to access all corporate systems through a single solution, without the need to remember multiple passwords. Authorization is performed by scanning a QR code followed by biometric identity verification. This mechanism works for logging into computers, VPNs, email, internal systems, and even for remote access from home devices.
The rollout began at the central office, which employs around 150 staff. The process involved challenges typical of innovative projects, such as initial user resistance and a lack of internal expertise. The IT department took an individualized approach, conducting training sessions, assisting with setup, and developing detailed onboarding instructions.
“The early stages were difficult. People were not used to installing something on their personal phones or using an additional key. But over time, once they experienced the convenience, attitudes changed,” says Roman Komendant.
Today, Hideez is integrated with the Agency’s Active Directory. The system automatically rotates passwords every two months without user involvement. In addition, Hideez is deployed on-premises, allowing the IT team full control over administration processes and enabling gradual scaling across all subordinate structures.
Implementation results
The adoption of Hideez became a key step in building a unified, secure, and user-friendly digital ecosystem for the Agency for Restoration. The solution centralized access management for critical government systems and enhanced cybersecurity without compromising usability.
“Passwordless access makes life easier and increases efficiency. SSO allows you to log into systems at any time without needing to remember or manually update passwords,” says Roman Komendant.
Key results include:
Future plans
Following the successful implementation at the central office, the Agency plans to scale Hideez across all subordinate services and state-owned enterprises, providing passwordless access to more than a thousand users. The next phase includes full integration of Hideez SSO into all operational systems and the creation of an in-house SOC for centralized security monitoring.
Key benefits
This case study is based on an interview with Anastasiia Kliushkina, Enterprise Sales Manager, BAKOTECH, and Roman Komendant, Deputy Head of the State Agency for Restoration and Infrastructure Development of Ukraine for Digital Development, Digital Transformation, and Digitalization.
Case language: Ukrainian (subtitles available)