Industry analyst Gartner reports that a growing number of companies are choosing to use identity and access management as a service (IDaaS) to provide federation capabilities rather than on-premises federation solutions, and the use of federation IDaaS is becoming more common especially for single sign-on (SSO) to SaaS application use cases.
OneLogin supports a federated identity management architecture that creates an additional tier connecting between SaaS applications to existing corporate directories such as Active Directory or LDAP. This federation tier logs in users into SaaS applications by passing the application a secure token such that user credentials are never passed directly in case one gatekeeper gets compromised.
This solution works well for the vast majority of popular applications such as Salesforce and Marketo, as well as custom or third-party application that supports a standard protocol like SAML or OpenID. In addition, OneLogin offers free open source SAML extensions for applications which do not yet support identity federation.
With OneLogin, the federation of identity seamlessly enables the portability of identity information across otherwise autonomous security domains so employees can easily get into internal or external applications, while both partners and customers can securely access company data or systems, without the need for redundant user administration.
OneLogin comes with additional benefits such as an app catalog with pre-integrated applications for faster integration, Single Sign-On with Multi-Factor Authentication, and role-based access control policies.
Trying to spin up ADFS and the directory sync tool, it's just mind-numbingly painful. But with the OneLogin one-click install, we were in and out, and done with the implementation in just a matter of minutes.MATT IRVINE Director of Media Services
We have created SAML connectors for our ordering, discounting, licensing, and support ticketing systems, and SharePoint-based portals for our partners and customers using OneLogin’s SAML Toolkits. They are external-facing systems that we secure with OneLogin, so our partners can use single sign-on for those applications, as well as for Salesforce, ServiceNow, Concur and Workday.NIRAV SHAH Director of Information Systems
With OneLogin, the federation of identity seamlessly enables the portability of identity information across otherwise autonomous security domains so employees can easily get into external applications, while both partners and customers can securely access company data or systems, without the need for redundant user administration.
OneLogin supports a federated identity management architecture that creates an authentication tier in the middle of multiple authorization infrastructures, where user credentials are never passed around directly in case one gatekeeper gets compromised. The federated tier lets developers write apps that communicate by using a common set of APIs rather than having to master the APIs of the services behind them, significantly streamlining authentication and authorization in a highly secure fashion.
OneLogin’s cloud-based Identity and Access Management (IAM) solution enables you to connect multiple external directories with up to hundreds of thousands of users to thousands of cloud and on-premise applications. You can set up a new account, connect multiple corporate directories and add several key applications within as little an hour.