Using single sign-on with Replicon
Polaris currently offers the following single sign-on (SSO) options:
- SAML authentication
- Pre-configured Google, Intuit, and ADP authentication providers (configured using the OpenID Connect standard)
- Create your own custom authentication option for any other providers that support OpenID Connect
What is single sign-on?
Single sign-on (SSO) allows you to access two or more applications using one set of credentials. If you’re set up with SSO for Polaris, you’ll either log in using a link provided to you by your administrator, or you’ll sign in via our login page (typically by clicking a button for a third-party app) without entering any credentials.
Using SSO has several advantages, such as:
- End users don’t need to remember a unique Polaris password, and don’t need to enter credentials when accessing Polaris
- Managing passwords is faster and easier, since they can’t be lost and never need to be recovered
- Enhanced security, since weak or insecure passwords are avoided
What is SAML?
Security Assertion Markup Language (SAML) is a standard that allows authentication credentials to be shared by multiple applications within a network. This allows you to access many applications under your network’s umbrella using one user name and password.
We support SAML 1.1 and SAML 2.0. If you plan to use SAML 1.1, Polaris hosts an identity provider you can use.
If you use SAML with Polaris, users typically bypass the Polaris login page completely, and use a link or URL you provide them with to access Polaris without logging in.
What is OpenID Connect?
OpenID is an authentication standard used to create SSO solutions. In Polaris, our Google, Intuit, and ADP SSO options are based on this protocol. You can also create your own SSO solutions using any provider OpenID Connect supports.
Do Replicon Mobile and the Polaris mobile app support SSO?
Yes, you can use any method of SSO we support in our mobile app.
Setting up single sign on
Using SAML for single sign on
Setting up users for single sign on authentication