Description:
Tovuti is Single Sign-On (SSO) ready. We currently work with any SAML-based SSO (Active Directory, Okta, OneLogin, etc.) and with OAuth-based SSO. Through SSO, you can quickly add or remove a user’s access to your Tovuti instance.
Single Sign-On (SSO):
Tovuti currently supports SSO through SAML and OAuth2. Tovuti provides just-in-time user provisioning. Once you setup the group mapping in the Tovuti SSO menu settings you can pass a group in the token. New users provisioned in your SSO provider will automatically be provisioned in Tovuti.
SAML:
Security Assertion Markup Language (SAML) is an open standard that allows identity providers (IdP) to pass authorization credentials to service providers (SP).
Tovuti supports Single Sign-On (SSO) with any Identity Provider that supports SAML such as:
- OneLogin
- AuthO
- Centrify Identity Service
- Microsoft Azure Active Directory
- Microsoft Active Directory Federation Services (ADFS)
- Okta Identity Management
- Idaptive Next-Gen Access
- Amazon Cognito
- SecureAuth Identity Platform
- VMware Workspace
- OneEmpowerID
- Optimal IdM
- CloudCodes
- LastPass Enterprise
- Ping Identity
- PingOne
- Salesforce Identity + Generic support for SSO systems that use SAML 2.0
OAuth 2.0:
OAuth 2.0 is the industry-standard protocol for authorization. OAuth 2.0 focuses on client developer simplicity while providing specific authorization flows for web applications, desktop applications, mobile phones, and more.
Tovuti supports Single Sign-On (SSO) with any Identity Provider that supports OAuth 2.0 such as:
- AWS Cognito
- Google Apps
- Windows Account
- Other OAuth2 supported Identity Providers
