What is OmniDefend SSO?

The purpose of the OmniDefend Single-Sign-On (SSO) solution is to ensure secure and seamless authentication into your business applications. Using OmniDefend SSO, say goodbye to password-based vulnerabilities and inconvenience in favor of a single biometric or other MFA credential.

How to Use OmniDefend Password-Fill SSO

To use OmniDefend SSO, first navigate to the business application that has been provisioned to you. In this case I will use the example of Wordpress. After launching the browser, navigate to the WordPress login portal, as seen in the image below:

../../_images/sso-wordpress-login.png

Tip

notice that the OmniDefend SSO browser extension is colored red, indicating that I am not currently logged in OmniDefend.

Next, click the red OmniDefend browster extension button to easily login to OmniDefend on the same page, and you should be prompted for authentication as seen in the image below:

../../_images/browser-extension-login.png

Note

if your browster extension is blue colored, it means you have already logged in and can skip this step.

Select the MFA method that your organization has provisioned you to use to login by left-clicking the correct MFA icon, and authenticate into OmniDefend. As you can see in the image below, John Developer will login wih fingerorint.

../../_images/mfa-browster-extension.png

After logging into the portal, OmniDefend will detect that you are attempting to login to a business application which has been setup with SSO. OmniDefend will prompt you to once again authenticate using your MFA credential, as you can see in the image below:

../../_images/application-mfa-login-sso.png

Login with your MFA device one more time, and OmniDefend will automatically populate the login fields of your business application with your true credentials, logging you in to the application.

How to Use OmniDefend SAML-Based Authentication

Logging in with SAML is easier and more secure, so be sure to authenticate with SAML when possible. Here we’ll demonstrate SAML-based authentication using the same WordPress application.

First, launch the browser, and navigate to the WordPress login portal, as seen in the image below:

../../_images/application-saml-login-sso.png

Tip

For SAML-based authentication, the user does not neeed to first login with the OmniDefend Browster extension

Left click the SAML login button, and you will be redirected to a secure organization login page, as seen in the image below:

../../_images/saml-auth-login-page.png

Note

not all applications have a button to login with SAML. For some applications such as Office 365, simply typing in your email username will redirect you to the organization’s login page.

Authenticate with your OmniDefend MFA method, and login securely to the application.