If you are hosting your applications in a Liferay Portal, you may have multiple customers, partners, vendors, etc. who wish to sign into your Liferay using single sign-on. Each of your SSO partners will have a separate SSO solution such as Microsoft ADFS, Ping Identity, Shibboleth, IBM Tivoli, CA SiteMinder, Google Apps, or one of many others. They will support protocols such as SAML 1.1, SAML 2.0, WS-Federation, OAuth 1.0, OAuth 2.0 or OpenID Connect. Some users will not use SSO and will login directly into your portal with a user ID and password. Only IDM360 SSO for Liferay© supports multiple, simultaneous SSO connections to multiple partners.
- Each connection can be routed to a separate Liferay organization to make your installation a truly multi-tenant portal solution.
- Flexible rules are used to determine when and how SSO handshake should take place.
- Each partner connection is fully isolated from the rest and uses its own dedicated partner metadata.
- Identity and attribute processing can be configured for each partner connection separately.