We have to provide demo on SSO implementation leveraging apigee. Please let us know if something is available on these points.
1.Single SSO endpoint servicing multiple tenant application instances
2.Single SSO endpoint servicing multitenant application
Solved! Go to Solution.
Apigee Edge can be configured to talk to any Identity, authentication, Secure Token Service, SSO and access control providers. Apigee supports SSO strategy in several ways for Public and Private Cloud customers:
● Independent SSO and Token Management: In the simplest case, where an enterprise has chosen an Identity Provider (IdP) solution that is also a token provider (e.g. SAML or OAuth), Apigee can delegate token management to this external IdP.
● Independent SSO with Apigee Token Management: In cases where the chosen IdP is not able to be a token provider (e.g. SAML or OAuth) or, in cases where you wish to employ multiple IdPs, Apigee Edge can be used as the token provider, providing security mediation to the chosen IdP(s).
● API driven SSO and Identity Management: In situations where there is no SSO solution, Apigee Edge provides you the tools to create a standards based SSO solution for mobile and other platforms out of the box.
To achieve these you would need to create new proxie that can talk to IdP over HTTTP/S endpoint and if this does not exist then you would have to resort to Node.js to orchestrate the complete flow.
@Sunandita Dam please mail me more details on the specifics and we can plan next steps.
Requirement is how to implement SSO leveraging Apigee with different partners running in their own domain. Am keen to understand how this is supported.
Apigee Edge can be configured to talk to any Identity, authentication, Secure Token Service, SSO and access control providers. Apigee supports SSO strategy in several ways for Public and Private Cloud customers:
● Independent SSO and Token Management: In the simplest case, where an enterprise has chosen an Identity Provider (IdP) solution that is also a token provider (e.g. SAML or OAuth), Apigee can delegate token management to this external IdP.
● Independent SSO with Apigee Token Management: In cases where the chosen IdP is not able to be a token provider (e.g. SAML or OAuth) or, in cases where you wish to employ multiple IdPs, Apigee Edge can be used as the token provider, providing security mediation to the chosen IdP(s).
● API driven SSO and Identity Management: In situations where there is no SSO solution, Apigee Edge provides you the tools to create a standards based SSO solution for mobile and other platforms out of the box.
To achieve these you would need to create new proxie that can talk to IdP over HTTTP/S endpoint and if this does not exist then you would have to resort to Node.js to orchestrate the complete flow.
Thanks for the reply . In 3rd pt mentioned above., how identity management capabilities supported by apigee?
@Sunandita Dam Apigee Edge has a built in Backend As A Service (BaaS) that has a ready user store and authentication service which can be leveraged. You can find more details here.
User | Count |
---|---|
2 | |
1 | |
1 | |
1 | |
1 |