SSO Integration with ei3

ei3 SaaS applications offer seamless Single Sign-On (SSO) integration with Identity Providers (IdPs), enabling streamlined user access control. Through SSO, user identity is confirmed and access permissions are authenticated via the IdP.

Benefits of SSO Integration

  • Simplified Access: Users sign in once using their company credentials, gaining seamless access to our SaaS application
  • Enhanced Security: Authentication and access control are managed centrally by the customer’s IdP, reducing risk
  • Improved Efficiency: Centralized login reduces the need for separate user management within the SaaS application

How it Works

  1. Initiate Login: When a user attempts to log in to an ei3 application, they are directed to the customer’s IdP for authentication.
  2. Authentication Request: An SSO authentication request initiates, redirecting the user to IdP using SAML (Security Assertion Markup Language).
  3. User Authentication: IdP prompts the user to log in if not already authenticated. Upon successful login, the IdP generates an authentication token (SAML assertion) that verifies the user’s identity.
  4. Token Validation: The ei3 application receives and validates the token against established security configurations, confirming that it originated from the authorized IdP.
  5. Access Granting: Once verified, the ei3 application grants access based on the user’s assigned roles and permissions, retrieved from the application’s role mapping.

Integration Steps

  1. Configuration: Customers configure ei3 applications as a trusted SSO application within their own IdP, by specifying the ei3 application’s Service Provider (SP) Entity ID and necessary claims, such as the identifier for the user.
  2. Certificate Exchange: The IdP shares its public key certificate with the ei3 application to validate authenticity of authentication tokens.
  3. Testing: Once configured, test the integration by verifying that users can seamlessly log in using their IdP credentials.
  4. Deployment: Upon successful testing, the SSO integration is deployed, allowing customer users to access the application using their centralized IdP credentials
Supported Standards:

SAML 2.0: For enterprise IdPs like Okta, Azure AD, and Ping Identity, our SaaS application supports SAML for secure, standard-compliant authentication.

© 2024 ei3 Corporation. Content of this web page is proprietary to ei3 Corporation.

Print Friendly, PDF & Email