This documentation is for WSO2 Identity Server 5.3.0 . View documentation for the latest release.

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

WSO2 Identity Server can act as the identity provider of a single sign-on system with minimal configurations. This topic briefly introduces single-sign-on and how to configure the WSO2 Identity Server with different inbound authenticators by Configuring a Service Provider to achieve this. 

Note

Note: For a tutorial on how to configure single sign on with a sample application, see Configuring Single Sign-On.

...

Single Sign-On (SSO) requires you to sign in only once but provides access to multiple resources without having to re-enter your username and password. The following topics discuss the various protocols that can be used to configure Single-Sign-On (SSO).

Children Display

Warning
titleRemoved Feature!

OpenID 2.0 has been removed from the base product in this release (WSO2 Identity Server 5.3.0) as it is now an obsolete specification and has been superseded by OpenID Connect. Alternatively, we recommend that you use OpenID Connect instead. 

SSO and Federation

...

SSO and Federation

Excerpt

You use SSO on it's own or use SSO and Federation coupled together. Identity Federation involves configuring a third party identity provider as the federated authenticator to login to an application. When federation is coupled with SSO, the user can log in to one application using the credentials of the federated authenticator, and simultaneously be authenticated to other connected applications without having to provide credentials again.

For instance, you can set up google as a federated authenticator and then set up SSO between App1 and App2.  This will allow users to log in to App1 using their google credentials. Once the user is logged in, when the user attempts to access App2, he/she will not be prompted for credentails again and is logged in automatically. 

For more information on Identity Federation on it's own (without SSO), see the Identity Federation topic.

Configuring SSO 

The following topics discuss the various protocols that can be used to configure Single-Sign-On (SSO).

Children Display

Warning
titleRemoved Feature!

OpenID 2.0 has been removed from the base product in this release (WSO2 Identity Server 5.3.0) as it is now an obsolete specification and has been superseded by OpenID Connect. Alternatively, we recommend that you use OpenID Connect instead.

Panel
titleRelated Topics