Single Sign-On Capabilities

Tovuti currently supports SSO through SAML and OAuth2.

Tovuti provides just-in-time user provisioning. Once you setup the group mapping in the Tovuti SSO menu settings you can pass a group in the token. New users provisioned in your SSO provider will automatically be provisioned in Tovuti.

Security Assertion Markup Language (SAML) is an open standard that allows identity providers (IdP) to pass authorization credentials to service providers (SP). 

Tovuti supports Single Sign-On (SSO) with any Identity Provider that supports SAML such as:

  1. OneLogin
  2. AuthO
  3. Centrify Identity Service
  4. Microsoft Azure Active Directory
  5. Microsoft Active Directory Federation Services (ADFS) (view setup guide)
  6. Okta Identity Management (view setup guide)
  7. Idaptive Next-Gen Access
  8. Amazon Cognito
  9. SecureAuth Identity Platform
  10. VMware Workspace One
  11. EmpowerID
  12. Optimal IdM
  13. CloudCodes
  14. LastPass Enterprise
  15. Ping Identity PingOne
  16. Salesforce Identity
  17. + Generic support for SSO systems that use SAML 2.0

OAuth 2.0 is the industry-standard protocol for authorization. OAuth 2.0 focuses on client developer simplicity while providing specific authorization flows for web applications, desktop applications, mobile phones, and more.

  1. AWS Cognito (view setup guide)
  2. Google Apps
  3. Facebook
  4. LinkedIn
  5. Instagram
  6. Windows Account
  7. Other OAuth2 supported Identity Providers