SSO / SAML / OIDC

Single Sign-On integration with SAML 2.0 and OpenID Connect. Integrate with your existing identity provider.

What is SSO?

Single Sign-On (SSO) allows users to authenticate to Faramesh using their existing corporate identity provider, eliminating the need for separate credentials and providing seamless access.

Key Features

• SAML 2.0 - Full SAML 2.0 support for enterprise identity providers
• OpenID Connect (OIDC) - OAuth 2.0 / OIDC support for modern identity providers
• User Provisioning - Automatic user creation and role assignment from identity provider
• Just-In-Time (JIT) Provisioning - Create users on first login
• Role Mapping - Map identity provider groups to Faramesh roles
• Session Management - Secure session handling with SSO

Supported Providers

• Okta
• Azure AD / Microsoft Entra ID
• Google Workspace
• Auth0
• OneLogin
• Ping Identity
• Any SAML 2.0 or OIDC-compliant provider

Use Cases

Enterprise Integration

Integrate Faramesh with your existing corporate identity provider, allowing employees to use their corporate credentials.

Centralized User Management

Manage users in your identity provider and automatically sync them to Faramesh, eliminating duplicate user management.

Security Compliance

Meet security requirements by using enterprise-grade authentication and centralized access control.

Benefits

• Single set of credentials
• Centralized user management
• Enterprise-grade security
• Seamless user experience
• Compliance with security policies

Note: This feature is not available in the open-source FaraCore. SSO/SAML/OIDC is available in Faramesh Nexus (Enterprise).