Recent Searches

No recent searches

    Popular Articles

      Articles
      View all
        Topics
        View all
          Tickets
          View all
            no results

            Sorry! nothing found for

            Understanding How Single Sign-On (SSO) Works in Modern Applications – In the Context of SanerCVEM

            Modified on Tue, 14 Oct at 6:06 PM

            Overview


            Single Sign-On (SSO) is a widely used authentication mechanism that enables users to log in once and gain access to multiple applications without re-entering credentials. In enterprise environments, SSO simplifies access management, enhances security, and improves user experience.

            In the context of SanerCVEM, SSO allows administrators and security teams to access the SanerNow platform using their existing organisational credentials instead of managing separate usernames and passwords.


            How SSO Works in Modern Applications

            At a high level, the SSO process follows these steps:

            1. User Attempts to Access an Application

              • The user navigates to SanerCVEM (e.g., https://saner.secpod.com).

            2. Redirection to Identity Provider (IdP)

              • SanerCVEM redirects the authentication request to the configured Identity Provider (IdP), such as Azure AD, Okta, or Ping Identity.

            3. Authentication at IdP

              • The IdP validates the user’s credentials (username, password, MFA, etc.).
              • If successful, the IdP generates a secure token/assertion (e.g., SAML response or OIDC token).

            4. Token Exchange with SanerCVEM

              • The token is sent back to SanerCVEM.
              • SanerCVEM validates the token using cryptographic keys shared with the IdP.

            5. Access Granted

              • Once validated, the user is granted access to SanerCVEM without having to log in separately.

            In simple terms: The IdP authenticates the user, and SanerCVEM trusts the IdP’s confirmation.



            Example SSO Flow with SanerCVEM

            • User attempts to access SanerCVEM.

            • SanerCVEM redirects user to IdP.

            • Authentication happens at IdP.

            • IdP returns token/response to SanerCVEM.

            • SanerCVEM validates token, creates session, and grants access.


            Note: SanerCVEM integrates with major IdPs using SAML 2.0 


            Benefits of SSO in SanerCVEM

            • Simplified User Management: No need for separate credentials for SanerCVEM.
            • Enhanced Security: Centralised enforcement of MFA, password policies, and conditional access via the IdP.
            • Improved User Experience: Seamless login to SanerCVEM along with other enterprise apps.
            • Compliance: Centralised access logs from IdP help with auditing and compliance requirements.


            Conclusion


            SSO is a key part of modern application authentication, offering secure and seamless access across enterprise applications. In SanerCVEM, SSO integration ensures that security teams can leverage their existing enterprise identity infrastructure while maintaining compliance, reducing password fatigue, and strengthening access security.


            Interested on how to setup and configure SSO refer to the below documentation :

            How to enable SSO authentication policy in Saner CVEM? – SecPod – Documentation



            Was this article helpful?

            That’s Great!

            Thank you for your feedback

            Sorry! We couldn't be helpful

            Thank you for your feedback

            Let us know how can we improve this article!

            Select at least one of the reasons
            CAPTCHA verification is required.

            Feedback sent

            We appreciate your effort and will try to fix the article

            Preview
            0 of 0