SAML (Security Assertion Markup Language) is an open standard that enables users to easily and securely single-sign-on to internal resources as well as many popular cloud services without having to log in to each application separately. With SAML, an identity provider (IDP) is used to provide authentication services and can be located inside an organization’s network. With GreenRADIUS as the on-premise identity provider, users can use their regular network credentials and add the security of 2FA to seamlessly and securely reach resources within the organization as well as cloud services supporting SAML, such as Google Apps, Salesforce.com, and Office 365.
The premium GreenRADIUS SAML Module makes things easy for administrators. Simply set up GreenRADIUS with the SAML Module and configure external SAML-capable services to use GreenRADIUS as the IDP. Define AD groups for the SAML-enabled services users should have access to (the policy). Your users will only need to log in once to the GreenRADIUS User Portal using their regular network credentials and token. Once authenticated in the portal, icons of available internal and third-party services will be displayed, and users can be taken to each service seamlessly with a simple click. No additional authentication is required (except when a session times out).