Hello there!

Need Help? We are right here!

support
miniOrange Email Support
success

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com

Identity Broker Service

miniOrange Identity Broker Service enables organizations to connects multiple service providers with different identity providers (IdP). This creates a trust relationship with external identity providers & simplifies how online service providers can use existing trusted digital identities.

Identity Broker Service

What is Identity Broker Service?

Identity brokering is a way to establish trust between parties that want to use online identities of one another. Identity Broker is a service which connects multiple service providers with different identity providers. No needs to understand or implement complex Single Sign-On (SSO) protocols like SAML, OpenID, OAuth, CAS or any other.The important reason why we should use Identity Broker is that it supports Cross Protocol i.e. configuring Service Provider following a particular protocol with an Identity Provider following some different protocol. miniOrange Single Sign-On (SSO) as an identity broker service provides secure and easy access to all your services.


Identity Broker Service - Broker Flow



How does miniOrange works as an Identity Broker?

ADD IDENTITY PROVIDERS

Our SAML Identity Broker Service acts as Service Provider to any Identity Providers of your choice following the same protocol. You can configure any Enterprise SAML IDP like ADFS, Azure AD, Shibboleth, Google Apps, Okta, Salesforce, OneLogin, or any other SAML identity provider (IDP).

ADFS- Identity Brokering
ADFS
Azure AD - SAML Identity Brokering
Azure AD
SAML Broker Service for Google Apps
Google Apps

Identity Brokering service for OneLogin
OneLogin
Okta- SAML SSO with Identity Broker Service
Okta
SAML Broker Service for Shibboleth
Shibboleth


Cloud Identity Broker Service - SAML Single Sign On


By using our Identity Broker Services you can configure any OAuth Provider like Slack, Discord, AWS Cognito, Azure AD, keycloak, Okta, Salesforce, etc. and provide Authentication to your users.

Azure - OAuth Identity Broker Service
Azure AD
Cloud Identity Bokering for AWS Cognito
AWS Cognito
OAuth Identity Brokering for Discord
Discord

Identity Broker Service for Crowd
Crowd
Keycloak OAuth Cloud Identity Broker Service
Keycloak
Okta OAuth SSO - Identity Brokering
Okta


Cloud Identity Broker Service - OAuth Single Sign On


OpenID Connect (OIDC) is simple an authentication layer on top of the OAuth protocol. This OIDC allows clients to verify the identity of an end-user and to obtain their basic profile information. We provide multiple OAuth Provider like Atlassian Crowd, Azure AD, AWS Cognito, WHMCS, Ping Federate, Slack, Discord, Keycloak, Okta etc.

Azure - OAuth Identity Broker Service
Azure AD
Identity Bokering for AWS CognitoI
AWS COgnito
OAuth Identity Brokering for Discord
Discord

Identity Broker Service for Crowd
Crowd
Keycloak OpenID Identity Broker Service
Keycloak
Okta OpenID SSO - Identity Brokering
Okta


Identity Broker Service - OpenID Single Sign On


CAS is a ticket-based Single Sign-On (SSO) protocol that provides users access to web applications after authentication against a central CAS Server. By configuring CAS protocol, you permit a user to access multiple applications while providing their credentials (such as user id and password) only once. It also allows web applications to authenticate users without gaining access to a user’s security credentials, such as a password.


Cloud Identity Broker Service for CAS Server


ADD USER STORES

By configuring our Identity Broker Service, it will be allow users to authenticate against various LDAP implementations like Microsoft Active Directory, OpenLDAP, and other directory systems and provide a login to any of your applications using credentials stored in your LDAP Server.

Cloud Identity Brokering for Azure Active Directory
Azure AD
Cloud Identity Brokering SSO services using LDAP
LDAP
Identity Brokering using Directory as User Store
Active Directory



Cloud Identity Brokering for AD/LDAP


Connect your existing My SQL, Microsoft SQL, Postgres SQL and other databases with miniOrange and allow your users authentication and Single Sign-On (SSO) without moving into miniOrange.

Cloud Identity Brokering SSO services using MySql
MySql
Cloud Identity Brokering for MariaDB
MariaDB
Idenity Brokering for PostgreSql
PostgreSql

Identity Brokering through Oracle
Oracle


Cloud Identity Brokering using Database


miniOrange provides secure login to any application via any CMS like WordPress, Moodle, Magento, Oracle Siebel CRM and many more and it allows your users to login to multiple applications via using their CMS credentials.

Cloud Identity Brokering using WordPress
WordPress
Mageno as database for Identity Broker Service
Magento
Identity Broker Service for Moodle
Moodle

Oracle Siebel for Identity Brokering
Oracle Siebel CRM


API Authentication for Identity Brokering


miniOrange provides secure login to any application via any Human Resource Management System like BambooHR, Workday, SucessFactor, etc and it allows your users to login to multiple applications via using their HRM System credentials.

BambooHR HRM Identity Broker Service
BambooHR
Brokering Service for workday
Workday
Cloud Identity Broker Service for Sucess Factor
SucessFactor



Features of miniOrange Identity Broker Service



Multiple SAML Providers

Admins can configure multiple SAML Identity Providers and configure which users/apps authenticate against which Identity Source.


App based Identity Source

Admins can configure which Identity Source should the users be authenticated from if the authentication request originates from a particular app.


Domain-based redirection to IDP

Admins can configure the domains of the users who would authenticate against any SAML, OAUth, etc Identity Provider.



IDP discovery

User can redirected to particular Identity Source automatically without prompting the user to choose his/her Identity Source on each login attempt.


Assertion Attribute Mapping

User can get attributes from their IdP and map them to SP user attributes like firstname, lastname with support for custom attributes.


IDP / SP initiated SSO

Users can start SSO from Service Provider (SP) and are then redirected to the Identity Provider (IDP) for authentication and vice-versa.



HOW TO SETUP MULTIPLE IDPs FOR IDENTITY BROKERING?



Login using IDP selection page

miniOrange provides Login Login using IDP selection page feature, where you can configure multiple IDPs (identity providers) and give users the option to select the IDP of their choice to authenticate with. For Example - It could be multiple AD domains belonging to different departments or multiple okta organizations. You can also change the look and feel of this page by customizing title, logo, favicon, background, button colour and many more of the login page.

Learn More  


Identity Brokering login through differnt IDPs





Identity Brokering - login via Domain Mapping




Login via Domain Mapping

miniOrange provides Login via Domain Mapping feature when you have multiple IDPs and you want a certain set of users to authenticate from one IdP whereas another set of users to authenticate from another IdP based on their email domains. In that case you can achieve this by our our Domain Mapping feature. We have provided a Domain Mapping field under each IdP where admins can enter the domain eg. demo.com , example.com as shown in the screenshot below. So user logging with any domain will be redirected to the specific organisation under for authentication.

Learn More  




Login via App Identity Provider Mapping

miniOrange provides Login via App Identity Provider Mapping feature when you have multiple IDPs (identity provider) and you want a certain application user to authenticate with one IDP and other application users with another IDP. In that case you can achieve this by our Identity Source feature. With this feature, you can configure particular identity source for your selected application. And the users of your selected application would be able to authenticate only by the IDP(Identity Provider) selected from Identity Source dropdown list.

Learn More  


Identity Broker service using App Identity Provider Mapping




Benefits of miniOrange Identity Broker Service




Boost Productivity

Saves time by accessing all resources with just one-click. Easily integrate with your application which supports SAML OAuth 2.0 etc.

Pay As You Go

Pay As You Go subscription model with less fees and free 24/7 support

Branding / Customization

We provide customization on our products which are platform independent and they can be easily accessed by an end user.



View our Other featured Products: Single Sign On | Two Factor Authentication | User Provisioning

Why Our Customers choose miniOrange Secure Identity Solutions ?


24/7 Support

miniOrange provides 24/7 support for all the Secure Identity Solutions. We ensure high quality support to meet your satisfaction.

Try Now

Affordable Pricing

miniorange provides most affordable Secure Identity Solutions for all type of use cases and offers different packages based on customer's requirement.

Request A Quote


We offer Secure Identity Solutions for Single Sign-On, Two Factor Authentication, Adaptive MFA, Provisioning, and much more. Please contact us at -

   +1 978 658 9387 (US)   ,   +91 77966 99612 (India)    |       info@xecurify.com