Securing all of your applications with a single IdP.
Needing to authenticate with separate passwords for every applications creates frustration and inefficiencies for both users and IT teams. With multiple applications being accessed, IT staff often struggle to manage multiple user repositories while the help desk continues to receive more password-related tickets.
With PortalGuard’s Single Sign-On (SSO), you can simplify the login process and eliminate passwords for users to quickly access applications anywhere across any device.
Single Sign-on (SSO) Demo
Seamless, Secure Access
Simplify the login process by giving users a single point of authentication to access their most important applications to avoid frustration and password fatigue.
Implement more granular security policies and stronger authentication methods, such as Identity-Bound Biometrics, to heighten protection without impeding your users.
Lower IT Costs
Reduce help desk calls by eliminating password-related user complaints and free up time for IT to focus on other tasks that enhance ROI, such as application security, network infrastructure, and overall configuration and connectivity across the network.
Access All Your Apps with a Single Point of Strong Authentication
PortalGuard’s Single Sign-On secures all applications – even the ones most challenging to integrate – with a single IdP. This makes it easy to protect on-premises, legacy, thick client, and web applications while also ensuring better adoption and easier rollout of new applications.
Open standards are the basis for identity federation solutions and are essential to enabling interoperability between unique identity systems, web resources, organizations, and vendors.
PortalGuard supports modern identity federation standards to help you meet your requirements for all user access scenarios.
For more information about the different types of SSO protocols visit the Types of Single Sign-on Protocols page.
- SAML 2.0
- OAuth 2.0
- OpenID Connect 1.0
- CAS 3.0+
SAML Identity Provider (IdP)
PortalGuard’s SAML IdP acts as a SAML-based portal that uses a single set of credentials for the portal login itself, and then grants access to the rest of your pre-registered web-based accounts. For example: Outlook Web App (OWA), Office 365, BlackBoard, Canvas, Google Apps, Moodle, Salesforce and various cloud-based applications are all easily integrated by using the SAML protocol.
SSO Concierge – Seamless Access to Thick Client Applications
Thick client applications, or thick client apps, are difficult to integrate into existing Single Sign-on (SSO) solutions with their external identity stores and lack of support for common identity federation protocols. PortalGuard SSO ConciergeTM eliminates the additional login and seamlessly passes credentials to thick client applications on the user’s behalf, improving productivity for users and the IT team.
Multi-factor Authentication & Identity-Bound Biometrics
PortalGuard’s SSO is protected by flexible multi-factor authentication, inducing Identity-Bound Biometrics (IBB), to give users authentication that they do not need to remember or physically possess, while also providing the highest levels of security. PortalGuard offers numerous multi-factor authentication methods and can help aggregate and consolidate your existing authentication solutions under one set of centralized security policies.
Identity Federation enforces common identity protocols and security by connecting different identity management systems together across domains and organizations. When paired with SSO capabilities, PortalGuard’s support for identity federation can improve user experience by only requiring credentials one time to obtain access to many applications. Additionally, it enables advanced security features like MFA and password policies, which are challenging to implement for separate applications.
You decide where you want to store your identities as PortalGuard seamlessly integrates with multiple directories including Microsoft Active Directory & Azure AD, IBM iSeries, LDAP-compliant directories, and custom SQL user repositories.
Give a “true SSO” experience for users on domain-joined workstations. They do not need to manually login to PortalGuard and can receive SSO based on the identity used to authenticate into Windows (and AD domain-joined Macs). With PortalGuard’s MFA capabilities users can be given a passwordless desktop login experience and avoid any additional password prompts.
Self-Service Password Management (SSPR)
SSPR allows users to manage their own passwords – resetting, recovering, and changing them – without having to call IT. PortalGuard SSPR streamlines your help desk process to ultimately reduce password-related calls and increase productivity for both end-users and IT teams.
A Customizable Experience
Full customization makes it easy to give users a consistent, branded, familiar experience to access all their applications, from any device.
Real Time Reporting
Real-time activity reports give you a snapshot of the most recent PortalGuard activity with out-of-the-box reports including:
- Web SSO activity
- Login activity
- Account Lockouts
- Self-Service Usage
Find out what PortalGuard can do for your business.