The ultimate dream in customer experience is allowing customers to access resources and applications seamlessly. Federated Identity Management (FIM) brings this dream a step closer.
As companies start working in tech ecosystems with other companies, employees from one company will access the partner company’s applications and systems. Gaining access to an external system can be set up by giving partner employees their own set of credentials, or by using the partner company’s authentication system as an Identity Provider. Once users have been authenticated by one company, they can access services or applications of the other company without having to authenticate again.
As a catalyst for building ecosystems and connecting systems that use different standard and protocols, TrustBuilder ID Hub acts as an identity broker, linking any Identity Provider or a combination of Identity Providers to any Service Provider. TrustBuilder.io is a managed platform that provides customers with standardized connections to Identity Providers, and SaaS applications.
TrustBuilder uses the Attribute-based engine and the Workflow engine to apply arbitrary complex policies on selecting authentication mechanisms and Identity Providers.
Three elements are important in establishing the trust between different domains or organizations that will allow FIM.
An Identity Provider is an internal or external service that can vouch for the identity of a user. The IdP typically provides its own authentication service(s). It stores the attributes of an individual that prove the user is who he claims to be.
The Service Provider (SP) is the application that a user wants to access and use. The SP trusts the identity provided by the IdP and ensures it is provided with the necessary identity attributes and access privileges to allow the user to consume its service.
An assertion is the message that is sent between the systems. The assertion tells the SP what the account name is of the user and will also provide the other attributes an SP needs to create a session for the user. Assertions, protocols and format are defined for each standard federation protocol (SAML, OIDC, …)
FIM was created to make it easier for users to access applications, thus enhancing customer experience. At the same time, FIM also yields business and technical benefits.
Several of our customers have been long-time users of TrustBuilder ID Hub in order to accomplish FIM.
European HR services leader SD Worx needs to provide its customers’ employees with seamless access to payroll information and other HR applications. SD Worx uses TrustBuilder ID Hub as an international single authentication platform to let customers start up any SD Worx application.
Insurance company Allianz Benelux works with an extended network of insurance brokers. Employees of the brokers need seamless access to the Allianz insurance applications. This is achieved through FIM using TrustBuilder ID Hub.
A large European bank uses Single Sign-on (SSO) for its 40,000 employees but also allows a number of business and service partners access to both its internal and its Software-as-a-Service (SaaS) applications. To enable that, they use FIM to access cloud-based SaaS applications.
Interested in more implementation info?
Check out our long read on the 5 keys to a successful implementation of your IAM.
Engage in a chat with our product people to discuss IAM trends and challenges, and our solutions.
Take our Maturity Assessment to find out how you can accelerate your digital transformation.
Experience the power of TrustBuilder.io Suite through a demo, personalized to your challenges.
Visit our offices, send us a mail, call us, or simply fill out a contact form.