Single Sign-On (SSO) is a mechanism that allows you to authenticate users in your systems and subsequently tell Thought Industries that the user has been authenticated. The user is then allowed to access Thought Industries without being prompted to enter separate login credentials.
At the core of SSO is a security mechanism that allows Thought Industries to trust the login requests it gets from your systems. Thought Industries only grants access to the users you have authenticated.
Thought Industries supports three different types of SSO.
Security Assertion Markup Language 2.0 (SAML 2.0)
SAML 2.0 enables web-based, cross-domain SSO, which helps reduce the administrative overhead of distributing multiple authentication tokens to the user.
OpenID Connect (OIDC)
JSON Web Token (JWT)
JWT claims are typically used to pass identity of authenticated users between an identity provider and a service provider, or any other type of claims as required by business processes.
Please download the Product Document attached for a comprehensive SSO guide.