Single Sign On (SSO)
Configure an OIN Application Using SWA?
(video) SWA is an Okta term that refers to the use of a browser plugin to securely pass credentials into web forms on behalf of the authenticated Okta user. SWA was created by Okta to provide single sign-on for applications that don't support proprietary federated sign-on methods or SAML. SWA applications are typically used to connect consumer type applications such as LinkedIn or Facebook. (go into linked in marketing group--> username and password created by admin)
Configure an OIN Application Using SAML?
(video) XML-based standard for exchanging authentication and authorization data between an identity provider (IdP) and a service provider (SP). SAML allows for an Identity Provider like Okta to create a secure connection to a Service Provider such as Salesforce, Workday, Box, or Google apps. When using SAML, the Service provider is not authenticating the user but rather trusting the authentication sent from the Identity Provider. In a SAML connection, instead of username and password credentials being passed from the identity provider to the service provider, an encrypted token is being passed instead, and thus SAML connections are more secure than SWA and should be used instead of SWA whenever available.
SSO authentication methods:
-Secure Web Authentication (SWA) -Security Assertion Markup Language (SAML) -WS Federation -Open ID Connect
OIDC
OIDC adds authentication to the OAuth 2.0 authorization standard. The user identity is established by authentication at the authorization server. OIDC also provides for profile information to be retrieved about the user.
What is Okta?
Once signed into Okta you can launch any of your web applications without having to reenter your credentials. Okta establishes a secure connection with a user's browser and then authenticates the user to Okta-managed apps using one of the available SSO authentication methods.
SAML
SAML is an XML-based standard for exchanging authentication and authorization data between an identity provider or IdP and a service provider or SP. SAML allows an identity provider (like Okta) to create a secure connection to a service provider. When using SAML, the service provider is not authenticating the user but rather trusting the secure authentication assertion from the identity provider.
SWA
SWA is an Okta term and refers to a method developed by Okta which uses a browser plugin to securely pass credentials into web forms on behalf of the authenticated Okta User. SWA was created by Okta to provide single sign-on for applications that don't support proprietary federated sign-on methods or SAML. The Okta browser plugin is required.
WS Federation
This authentication method is typically associated with Microsoft applications and works similarly to SAML.