- 22 Apr 2024
- 2 Minutes to read
- Print
- PDF
Authentication
- Updated on 22 Apr 2024
- 2 Minutes to read
- Print
- PDF
Single Sign-On (SSO) significantly enhances the security and experience of your login process by embedding multiple layers of security and employing login without a password.
Introduction
In traditional authentication systems, users have to log in separately for each application or service they want to use. SSO ensures that login information or identity is not lost when you switch domains or servers from anywhere to everywhere. This central identity provider acts as a trusted intermediary between the user and various applications, authenticating the user's identity and passing that authentication token to other applications to grant access.
Confirming user identity through a reliable and secure authentication service is crucial. Refer to the following sections for Authentication factors that are used to verify the identity of a user attempting to access a system, application, or service.
Authentication factors
There are two types of Authentication factors. They are:
Single Factor Authentication
Allows the user to enter a single valid credential for seamless and secured access.
Multi Factor Authentication
Allows the user to enter two valid credentials (any two combinations of Email or Mobile with the Authenticator App) to access the online platforms.
You can choose either of two combinations as follows:
Email and Mobile Authentication
Mobile and Authenticator App
The Authentication methods at Apex have a four-step approach as explained in the following figure.
To understand more about Authentication use cases and solutions, see the following Use Cases.
Use Cases
SL No | Use Case User Persona: Administrator | Solution |
1 | Sandra, the Application Administrator wants registered users to access certain features like order history, addresses, and payment details on E-commerce websites. | Fredrick, the Super Admin can configure Form login authentication to ensure that only authorized users can access the account information. |
2 | Sandra, the Application Administrator wants to secure access to cloud services from different providers using user credentials in cloud computing environments. | Fredrick, the Super Admin can configure a SAML-based authentication, providing a secure and reliable way to authenticate users across multiple cloud services. |
3 | Sandra, the Application Administratorat NovaTech wants to add user authentication for accessing files stored in Dropbox without entering the user login credentials. | This can be configured using OAuth-based authentication that grants access to the user accounts to third-party applications without sharing their login credentials. |
4 | Sandra, the Application Administrator at NovaTech wants users to authenticate using their mobile device instead of a username and password for their mobile application. | With OpenID Authentication, the user authentication process can be simplified, and they won't need to register for new accounts on every website they visit. |