How to implement Single sign-on (SSO)

Add Single sign-on (SSO) to your applications to allow users to enter one name and password to access multiple applications. Genero Application Server supports different kinds of Single sign-on.

The topics in this section introduce the supported SSO models you can use with the Genero Application Server, including the Genero Identity Provider (GIP), OpenID Connect/OAuth2, and SAML. Each protocol has its own section with a short description and configuration details.

SSO for web applications

SSO makes it possible for users who access your web applications and services using a web browser to navigate between the various web applications without having to sign in multiple times.

SSO for web application and Active Directory

If using a Windows® Server using Microsoft® Active Directory (AD) as an identity provider on premises, a federated SSO solution can be implemented for both authenticating users accessing web applications and accessing resources and applications locally.

The Genero Application Server supports the AD federated SSO solution for applications using SAML SSO or OpenID Connect/OAuth2 SSO. For more information on a federated SSO solution on Active Directory, refer to Single sign-on options on Microsoft Entra ID (external link).