Cloud SSO is essential for productivity in your organization. In fact, it also reduces help desk costs and can improve security. Users can log into applications faster and with fewer obstacles. No more lost passwords equals fewer help desk calls. And, for the first time ever, IT has a better understanding of all of the cloud applications and user accounts in their identity ecosystem.
Here is the rub: you cannot federate with all applications. It would be wonderful if SAML, OpenID, OAuth, et cetera were ubiquitous and you would have quick and easy federation with all of them. In fact, we have a whitepaper on the Top 5 Federated SSO scenarios for those applications that do support federation.
So, what do you do if it doesn't support federation? EmpowerID and its webform SSO. What this does for you is to allow your users to claim accounts, enter their credentials and then future logins are completely single sign-on. In fact, the user experience is exactly the same for both types of SSO, giving an even simpler user experience for your users.
Here is a demonstration of that user experience:
Now that you have your users single signing on to ALL of their applications, you get into some of the more exciting aspects of Identity and Access Management. The same platform (EmpowerID) that is providing SSO also provisions users into these cloud applications. Even going so far as being role based cloud provisioning. So, only users in a sales role get a SalesForce account. Only the developer role gets a JIRA account. And only those accounts that the user has will appear in their SSO dashboard.
Tags: Single Sign-on (SSO)