In order to implement Web SSO across multiple organizational application domains, standards-based federation of identities is a popular integration method. A successful example of this in higher education is the InCommon Federation.
The InCommon Federation is the U.S. education and research identity federation, providing a common framework for trusted shared management of access to on-line resources. Through InCommon, Identity Providers can give their users single sign-on convenience and privacy protection, while online Service Providers control access to their protected resources.
Some of the key advantages of a federation based access for an organization are:
The organization becomes the Identity Provider (IdP) and applications that exist in a domain external to this organization become mere Service Providers (SP)
It saves costs in terms of managing unique accounts associated with these Service Providers
Aids network security by not necessitating IT to have to open internal firewall ports between IdP and SP
The integration is straight-forward and consistent regardless of the Service Provider being on-premises or in the cloud.
Most present day SaaS applications managed by 3rd parties are enabled to support federation
Icon Technical Group can assist organizations to federate with any of multiple technologies/standards available currently in the market, such as:
SAML & SAML2
OpenID/ OpenID Connect
Security Token Service (STS)
Sign up with your email address to receive news and updates..