Single Sign-On for the Cloud

Smart Bridging of the Identity Cloud

Single Sign-On in a Cloud environmentGranting access to users is no longer under local control only. Applications may be owned by third parties, often in the Cloud. In such a distributed world, managing and validating a User's Identity is increasingly delegated to external providers as well.

Organizations need to embrace this evolution, keeping control over who gets access to what, how a user's identity is validated and which entitlements are granted in a given use case.

But with this increase in the number of applications that rely on an Identity Provider, comes an increase in what these applications expect from the Identity provider with regard to authentication mechanisms, policy and strength. In order to manage such n-to-n relationships, organizations need a flexible solution that is able to control and orchestrate this distributed and rapidly growing world.

TrustBuilder now provides a solution to deploy an Identity Hub, a system that will dynamically direct the user to the Identity Provider best matching the authentication requirements.

Identity in the Cloud

While the OAuth specification is primarily aimed at providing authorisation within federated environments, more and more cloud based authentication providers use it for authentication. The latest release of TrustBuilder can be used to provide SSO to protected resources via SAML, OAuth, OpenID Connect or WS-Federation. This allows such Service Providers to transparently integrate with Identity Providers that support Federation (regardless of the protocol used) and offer Single Sign-On to their customers.

Business benefits

  • Dynamically select the appropriate IdP for every business case
  • Seamlessly integrate with Cloud-based Identity providers
  • Change choices over time without impacting the applications environment
  • Centralized approach reducing costs and increasing control.


To receive our technical white paper