Pass-through authentication and single sign-on

user_rights

User access to the IdentityIQ application is controlled through an authentication process in which the user's sign-on credentials are validated against an authentication source. The IdentityIQ web application can be configured by the system administrator to perform this authentication in one of three ways:

1. Internal IdentityIQ authentication (default)

2. Pass-Through Authentication (PTA) Configuration

3. Single Sign-On (SSO) Configuration

By default, IdentityIQ authenticates users against its internal user Identity records. However, pass-through authentication and single sign-on can be enabled and configured through the IdentityIQ user interface. In fact, IdentityIQ is not limited to using just one authentication mechanism at a time; multiple authentication methods can be used together.

For more information, see attached white paper.

varunvj · ‎Mar 08, 2018

this document is really good.

adam_hampton · ‎Mar 08, 2018

Thank you! :-)

00482288 · ‎Mar 12, 2024

Hi @adam_hampton ,

I have a doubt in the attached document.

What will happen in step 5(Once the login is validated, it is associated with an account link in IdentityIQ.), if the Identity doesn't already exists and is created (using create rule) in step 6 only.

Means how the link is associated in step 5, if the Identity doesn't exist already ?

Thank you.