Single Sign-On

Single Sign-On (SSO) is an account security feature that grants users access to applications. Referrers can go to the white-labeled login page and use the Single Sign On feature to login. To use single sign on, the Referrer must set up a domain with a provider. Identity Provider examples: OneLogin, Google, Microsoft and more.

Single Sign-On utilizes SAML 2.0 (Security Assertion Markup Language) or OpenID Connect protocols to authenticate a user and provide identity data for platform access control. This process allows authentication to be deferred to the IdP (Identity Provider).

See the expandable content below for a brief comparison of authentication protocols:

Comparing SAML 2.0 & OpenID Connect 1.0

	SAML 2.0	OpenID Connect 1.0
Supported Protocols	XML, HTTP, SOAP, & all other XML-friendly protocols.	XRDS & HTTP
Validation Process	Validated through chosen IdP intermediary service response.	Validated through OAuth server response.
Access Response	SAML authentication “assertion” is generated by the intermediary IdP service to grant access.	A temporary access token is granted by the IdP server to grant access.
Supporting Identity Providers	Okta OneLogin SalesForce SiteMinder	Google Microsoft Okta

Benefits of Single Sign-On

Enhanced Security
- Leverage authentication decisions defined through your IdP, such as password and authentication policies.
- Revoke compromised user access to the Portal in minutes.
Seamless Access Management
- Optimize new team member onboarding with Portal access using sign-in credentials created by your business for access to multiple applications.
- Streamline existing team members' Portal access without requiring login with Payrix ID.

More info: Single Sign-On Auth Protocols

Visit the links below to learn more about different authentication protocols:

Single Sign-On

Benefits of Single Sign-On

More info: Single Sign-On Auth Protocols

Getting Started with Single Sign-On