Single Sign On
      Back to home
      1. Help Center
      2. Users and User Groups
      3. Single Sign On

      Single Sign-On Capabilities

      Tovuti currently supports SSO through SAML and OAuth2.

      Tovuti provides just-in-time user provisioning. Once you setup the group mapping in the Tovuti SSO menu settings you can pass a group in the token. New users provisioned in your SSO provider will automatically be provisioned in Tovuti.

      SAML:
      Security Assertion Markup Language (SAML) is an open standard that allows identity providers (IdP) to pass authorization credentials to service providers (SP). 

      Tovuti supports Single Sign-On (SSO) with any Identity Provider that supports SAML such as:

      1. OneLogin
      2. AuthO
      3. Centrify Identity Service
      4. Microsoft Azure Active Directory
      5. Microsoft Active Directory Federation Services (ADFS) (view setup guide)
      6. Okta Identity Management (view setup guide)
      7. Idaptive Next-Gen Access
      8. Amazon Cognito
      9. SecureAuth Identity Platform
      10. VMware Workspace One
      11. EmpowerID
      12. Optimal IdM
      13. CloudCodes
      14. LastPass Enterprise
      15. Ping Identity PingOne
      16. Salesforce Identity
      17. + Generic support for SSO systems that use SAML 2.0

       OAuth2:
      OAuth 2.0 is the industry-standard protocol for authorization. OAuth 2.0 focuses on client developer simplicity while providing specific authorization flows for web applications, desktop applications, mobile phones, and more.

      1. AWS Cognito (view setup guide)
      2. Google Apps
      3. Facebook
      4. LinkedIn
      5. Instagram
      6. Windows Account
      7. Other OAuth2 supported Identity Providers