Single sign-on with SAML 2.0 or OpenID Connect
In this authentication mode, single sign-on is enabled; it uses the same login and password entered for authentication in the operating system, or in the browser, in the identity service. This means that the user does not need to provide their credentials directly on the SoftExpert Suite authentication screen, which makes the process more practical and convenient.
This approach uses SAML 2.0 or OpenID Connect authentication protocols, which are considered more secure compared to previous methods. SoftExpert Suite integrates with the identity provider, allowing authentication information to be shared securely between systems.
The single sign-on flow works as follows:
- The user authenticates themself in the operating system or browser using their login and password.
- When accessing SoftExpert Suite, the system uses the SAML 2.0 or OpenID Connect identity provider to verify the authenticity of the user's credentials.
- If the credentials are validated by the identity provider, the user is authenticated in SoftExpert Suite without having to provide their credentials again.
This approach simplifies the authentication process for the user, as they do not need to enter their credentials again. Additionally, SAML 2.0 and OpenID Connect protocols provide a higher level of security to protect authentication information during communication between systems.
⚠️ Attention:
- It is possible to use both groups of authentication modes together by selecting one option from each (for example, SAML 2.0 can be used together with OpenID Connect).