PhenixID Identity Federation provides a solution to add a single point of authentication.
End users login only once using a strong authentication method and get access to all their applications.
Many companies and branches of government are facing a rapidly
growing number of applications, user directories and databases.
Remembering account information for a large number of applications
is a challenge to end users. Identities are managed in each application.
Integrating strong authentication has to be carried out by each application
which is a complex and expensive task.
Using PhenixID Identity Federation, administrators are able to manage identities
and application access in only one user directory.
Applications integrate rapidly with the single point of authentication.
Single Sign-On (SSO) with strong authentication
Single Sign-On (SSO)
Let your users only login once to access all their resources.
PhenixID Identity Federation supports SAML 2.0, OAuth and OpenID Connect.
Enforce a strong
authentication baseline
for all your applications.
Challenges that we solve
Get started with PhenixID!
See it!
See our products in action.
Schedule a demo or visit our Youtube channel
Buy it!
Please contact sales for licensing or request for an evaluation license.
Resources
Tech info
-
Why Federation?
-
Benefits
Federation is linking of trust and identities across organizations and for the end user the possibility for Single Sign-On (SSO)
Allows a central point of identity management:
– Enforce strong authentication methods, such as MFA or certificate
– Local authentication can be used i.e Active Directory SSO
– Can do context based authentication (internal/external networks, browser type, etc.)
– Restrict access based on group membership, time or days of week, etc.
– No need to manage accounts on remote services when an employee leaves the company. -
Standard protocols supported
Please click the following link for the different standard protocols that are supported.
-
Identity Provider, IdP
Responsible for validating user credentials.
-
Service Provider, SP
Responsible for service to clients. Use Identity Providers for verifying a user’s identity and attributes.
-
Identity Mapping
Transforms of a security token from one format to another format, or the federation of an identity from one realm to an equivalent identity in another realm.
-
Federation Broker
-
Overview
The main purpose of the federation broker is to:
Facilitate for Service providers (applications)
– One connection point (the broker)
– Multiple identity providers connected to the broker.
– Selection list of connected IdP´s (“Please select the organization you belong to”) is provided by the broker
– Central point for maintaining access rules.Facilitate for Identity providers (organizations)
– One connection point (the broker)
– Multiple service providers connected to the broker. -
-
PhenixID MyApps
-
What is MyApps?
MyApps is a portal that displays available apps for me. The application displayed is based on authorization criteria i.e. member of group, specific attribute, IP/geolocation etc.
-
Single Sign-On
Application icons displayed in MyApps give the user SSO if the application supports federation.
-
Activate strong authentication
The self enrollment portal for strong authentication is available so the user can enroll to the PhenixID mobile apps; One Touch and/or Pocket Pass.
-
Reset/change password
After a successful strong authentication it is possible to allow the user to reset/change their password from PhenixID Password Self Service.
-
Videos
PhenixID integration with OpenID Connect
Strong authentication and single sign-on for mobile apps with OpenID Connect
Beskrivning:
How to support strong authentication for mobile apps and achieve single sign-on?
Using OpenID Connect to verify the identity of a user.
Demo includes two OpenID Connect native apps:
STRONG AUTH
SSO
Scenario is to first showcase strong authentication and in next app achieve SSO when app is opened.