Share this
by Stephen Barrell on 11 June 2026
Your login process is your digital front door, deciding who gets access, what they can do, how the experience looks and feels and ultimately whether customers stick around or walk away.
Why it's harder than it looks
While it looks easy as a user, it's complex from both business and technical perspectives. It's a rare space where business initiatives, changing consumer trends, marketing and customer journeys, security, privacy, compliance, legacy systems and scale all collide. It's become a specialist area called Customer Identity and Access Management (CIAM), and it's not a problem that most IT teams can solve on their own.
But when we talk to clients across New Zealand, it usually starts with tooling. Then, pretty quickly it becomes:
- How do we keep things secure without making it painful for customers?
- How do we handle scale without everything falling over, complex integrations and vendor lock in?
- How do we stay on the right side of privacy and data regulations that keep changing?
- How can I make it look and feel like us?
CIAM is expected to deliver all of that at once, secure, seamless and compliant across every channel. And in New Zealand specifically, the Digital Identity Services Trust Framework Act is raising the bar around privacy, consent, and governance even further.
The market's crowded (and honestly, confusing 😊)
Microsoft Entra External ID, Auth0, AWS Cognito, Okta, Ping, ForgeRock, with no shortage of options. Each of these has strengths depending on your ecosystem and what you're trying to do.
But the real challenge isn't just picking a product. It's choosing the right architecture for your business. The wrong call may not break on day one. It breaks when you try to scale, plug things together, or evolve your environment. .
What good looks like
The organisations doing this well don't jump straight to vendor demos. They get aligned on use cases, experience design, security posture and how identity connects across their apps, APIs and data first. Then they assess options against scalability, flexibility, compliance, cost and vendor dependency.
And if you're migrating from an existing solution, don't underestimate it. User migration, phased rollouts where old and new coexist, downstream impacts to apps, CRM and security tooling, it all needs proper planning.
Done well, it reduces risk and improves the customer experience. Done badly, it's a mess.
So, what should you be thinking about?
If how your customers log in and access your services is on your roadmap, here's where I'd start:
- Are we treating this as a strategic capability, or just a login problem?
- Do we understand all the user types and journeys we need to support?
- Are we setting ourselves up for future flexibility or locking ourselves in?
- Do we have a clear picture of risk, compliance, and data ownership?
How your customers log in is where trust is built or broken. Where customers convert or abandon. And when it's done well, it's a genuine competitive advantage.
This is where having a partner who's been through it before really pays off. Not just for the technical build, but for shaping the approach and avoiding the traps that aren't obvious until you're already in them.
If you're working through this right now, we're happy to have a chat. We've helped a number of organisations navigate it end to end, from early discovery and workshops through to platform evaluation and implementation. Whether that's us leading the heavy lifting or working alongside your team, whatever makes sense for where you're at, we're here to help.