Embedding SSO capabilities into existing applications provides a mechanism to reduce risk to confidential resources by offering identity assurance through AuthAnvil Two Factor Auth. It also removes the need (and burden) of having to enter a password for your application through AuthAnvil Single Sign On. Take advantage of AuthAnvil’s web services architecture to provide single sign on directly into your own software, and reuse your existing AuthAnvil infrastructure that is already protecting the rest of your business.
Why Add AuthAnvil Support To Your Applications?
Many companies leverage in-house developed applications to meet objectives in their business workflow. These tools and applications typically have a great deal of access to confidential information and are normally protected with built in password systems which may be inadequate to protect the data. Adding stronger authentication solutions hasn’t been easily available for custom applications. They are usually too complex and require serious overhauling of the code to integrate. Not anymore.
By using industry standards like SAML 2.0 you can have your own applications take advantage of our assertions and directly leverage components inside of complimentary products like AuthAnvil Two Factor Auth to manage and provision user accounts. As an example, you can use Active Directory User Synchronization (ADUS) to provision accounts either on-premise or in the cloud and then enable them for SSO access directly in AuthAnvil Single Sign On, giving you role-based access control to your own applications through our solutions without needing to build it in yourself.
We offer sample application code and developer support and guidance to help you build in the support you need. And we include a framework to allow you to import your own SAML templates so you can add your own applications into AuthAnvil Single Sign On that are not included in the base package.
How does it work?
Simple really. AuthAnvil Single Sign On acts as an Identity Provider (IdP) and on login provides a list of applications that a user is authorized to see. That login uses a strong passcode provided from their AuthAnvil token as part of AuthAnvil Two Factor Auth. Using role-based access control to provide this list, the user can then click on any application they are authorized to access and immediately have a SAML assertion created to meet your application’s specific needs. You can set up specialized attributes/claims to provide the authentication and authorization information required, and ultimately allow you to make an informed decision on who is accessing your application, and with what privileges.
From there they continue to use your application just like they did before. Without ever having to know or enter a password!