As organizations adopt cloud applications in droves, end users end up having to deal with more and more passwords throughout the day just to complete their work. For effective user identity management, you need to adopt an efficient and secure approach to managing users’ passwords. ADSelfService Plus is an enterprise single sign-on (SSO) solution that provides users with seamless, one-click access to all SAML-enabled cloud applications. It allows users to access all their cloud applications with just one identity. With ADSelfService Plus SSO, minimize password security issues, increase productivity, and ease identity management challenges, while also enhancing user experience.
Users are simply required to log in to ADSelfService Plus, which acts as the identity provider. Once logged in, users are presented with a dashboard that lists every cloud application they have access to. With just one click, users will be able to access each application without having to enter their username and password again.SSO App Catalog
ADSelfService Plus protects access to cloud applications with multifactor authentication. When SSO is enabled, users must always authenticate themselves in ADSelfService Plus—first using the tried and tested Windows Active Directory domain credentials, and then using another factor chosen by you. For the second factor, ADSelfService Plus supports native factors such as SMS or email-based verification codes as well as third-party authentication providers such as Duo Security, RSA SecurID, RADIUS server, and Google Authenticator. Learn how ADSelfService Plus ensures cloud apps security with two-factor authentication.
ADSelfService Plus utilizes users’ existing identities in Windows Active Directory for authentication. This saves time that would have otherwise been spent on setting up new identities for users, and also removes any dependency on password vaulting tools for storing additional passwords. ADSelfService Plus also uses the OU and group structure in Active Directory to control access to cloud apps. Learn how ADSelfService Plus lets you easily use Active Directory identities for setting up single sign-on for cloud apps.
You can control who accesses which cloud applications by creating policies based on Active Directory OUs and groups. You can create multiple policies and restrict access to critical business applications to only those users who need them. For example, you can create and enforce a policy that provides access to sales applications only for users in the sales OU, and another policy that provides access to finance applications only for users in the finance OU.