Single sign-on
Log in once, complete all tasks
Action-based SSO and system connections:
Gain security and save time.
The user perspective
Employees want to log in only once and complete all tasks – preferably without even opening applications.
Single sign-on enables fast and secure access to all applications.
Employees want to:
save time
have security
remember only one password
Each employee logs in using single sign-on with just one password and accesses all applications.
The solution
Single sign-on based on Active Directory and Entra ID
Active Directory & Entra ID
• Use existing infrastructure
• All employees have one account
• SSO via ADFS to other systems
• Integrate policies
• Save passwords
• Specify authorizations
• Organize permissions in groups
IDM-Portal
•Use existing directory
• Action-based SSO
• Reset passwords
• Attribute-based SSO control
• Windows-integrated authentication
What exactly is single sign-on?
Single sign-on (SSO) authentication is a method that allows users to access multiple computer applications (or secure websites) with only one authentication.
Single sign-on provides the ability to connect once and access other applications without having to re-enter credentials.
The purpose of implementing authentication systems is to simplify the management of passwords and personal data on various online servers.
This supports and facilitates the implementation of an enterprise-wide security policy.
Main features – Single sign-on
Action-based single sign-on
Action-based single sign-on means executing actions in other applications directly with IDM-Portal.
By using PowerShell in the backend, you control third-party systems on a role-based basis – completely automatically.
Once you are logged in to the computer, you have direct access to IDM-Portal (SSO).
With action-based single sign-on, you don’t have to open other apps. Sign in once and get all your tasks done.
Systemic single sign-on
Active Directory Federation Services (ADFS) enables you to connect systems and applications even across enterprise boundaries.
The web application no longer takes care of user logon itself, but leaves this to a central location.
Usually the internal AD is federated with external applications / cloud.
You save time and simplify the management of usernames and passwords.
Configure single sign-on access
Attributes can be used to control which permissions are passed on to third-party applications via SSO.
You configure access to the various applications. FirstWare IDM-Portal provides you with flexible roles to delegate tasks.
Assign access rights to employees or departments. Each employee logs in only once and has immediate access to their applications..
The advantages
More security thanks to SSO
Time and cost savings
Role-based access authorization
Centralization of SSO authentication systems
SSO authentication saves time when you use only one password and username.
It is no longer necessary to use special programs for the forgotten password.
Centralization of SSO authentication systems and globalization of access control information increase security at all levels of access to unauthorized inputs and outputs to the system.
The main advantage of logging in once is the ability to remember only one password.
This is an important convenience for users and allows smooth access to all applications.
In addition, for security reasons, users are prevented from using the same password for multiple applications – or from using passwords that are too simple.
Tip from the expert
Give non-IT employees the opportunity to manage Exchange, M365, project drives
and more themselves with IDM-Portal.
Using action-based SSO, neither knowledge nor logins to the target systems are required for this.
So it is finally possible to delegate user management to the responsible departments (e.g. HR or business departments) as well.