Hello there!

Need Help? We are right here!

miniOrange Email Support

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com

Single Sign-On (SSO)

miniOrange Single Sign-On (SSO) product provides easy and seamless access to all enterprise resources with one set of credentials. We provide Single Sign-On (SSO) to any type of devices or applications.

Single Sign-On SSO

What is Single Sign-On (SSO) ?

Single Sign-On (SSO) is an authentication process in which a user is provided access to multiple applications and/or websites by using only a single set of login credentials (such as username and password). This prevents the need for the user to log in separately into the different applications. Single Sign-On addresses the challenge of maintaining the credentials for each application separately, streamlining the process of signing-on without need to re-enter the password.

SSO Components

Identity Provider

The user credentials and other identifying information are stored and managed by a centralized system called Identity Provider (IdP). The Identity Provider is a trusted system that provides access to other websites and applications.

Service Provider

A service provider provides services to the end-user. Service providers rely on identity providers to assert the identity of a user, and typically certain attributes about the user that are managed by the identity provider.

single sign-on sso workflow

How SSO works?


Authenticate with External IdPs

Use your existing Identity Providers (IDPs) to authenticate into your applications. No need to onboard your users and provide them uninterrupted access using miniOrange.

User Management

Providing a centralized location where IT can automatically manage identities, admin credentials, and secure users access, and where users can simply and securely access their apps.

Directory Integration

Easily Integrate your existing LDAP/Active Directory in miniOrange to provide users login using their existing credentials and secure access to applications.

Attribute Mapping

It is used to mapped attribute types that exist in miniOrange SSO with like Active Directory.

User Provisioning

Updates user information in your integrated directory when you manage user information like CREATE, DELETE or UPDATE user accounts in your miniOrange service.

Multi-Factor Authentication

Add one more security level to your application.It ensures the right set of eyes have access to your sensitive information sitting on the cloud or on-premise.

SSO Integrations

Integrate SSO using SSO connectors in many different platforms like Java, .Net, PHP, Node.js, Ruby, etc.Useful for applications which do not have in-built support for any SSO protocol.

Multiple IDP's Supported

This feature enables you to manage user accounts automatically within applications. This saves time and ensures that your user's access rights are up to date.

Third-Party Application Integration

We have integration with different products of Oracle/SAP/Cisco for Single Sign-On (SSO) and multi-factor authentication.

Instant Integration


Boost Productivity

Saves time by accessing all resources with just one-click. Easily integrate with your application which supports SAML OAuth 2.0 etc.

Flexible IdP

Enable Single Sign On(SSO) for users without having to move users from their existing user store. Variety of user stores like Identity Provider, OAuth Provider, Active Directory, Database etc. are supported.

Branding / Customization

We provide customization on our products which are platform independent and they can be easily accessed by an end user.

Pay As You Go

Pay As You Go subscription model with less fees and free 24/7 support

Single Sign On SSO identity broker


Identity brokering is a way to establish trust between parties that want to use online identities of one another. It is service which connects multiple service providers with different identity providers. No needs to understand or implement complex Single Sign-On (SSO) protocols like SAML, OpenID, OAuth, CAS or any other.The important reason why we should use Identity Broker is that it supports Cross Protocol i.e. configuring Service Provider following a particular protocol with an Identity Provider following some different protocol. miniOrange Single Sign On(SSO) as an identity broker service provides secure and easy access to all your services.

Why use miniOrange Single Sign On(SSO) as an Identity Broker?

Configure with any IDP or SP

miniOrange Single Sign On (SSO) as an Identity Broker connects all known SPs and IDPs like ADFS, Okta, Salesforce, SimpleSamlPhp, Shibboleth, PING, RSA, Centrify, One Login, miniOrange or any other Single Sign-On (SSO) identities.

Supports Cross Protocol

We can integrate any type of app without concerning about the standard protocols like SAML, OpenId Connect, OAuth or any other.

No need to Migrate

You dont need to migrate your users from your directory to our directory we can authenticate them directly.

Seamless SSO-Experience

When a user sso into any app via miniOrange Identity Server, they receive an SSO session for all other apps that rely on miniOrange for login, regardless of protocol. This ensures a seamless SSO experience across any applications.

How miniOrange comes into Act as an Identity Broker?

miniOrange Single Sign On(SSO) as an identity broker works and provides a platform where we can configure Service Providers and Identity Providers which follows different protocols. To better understand how Identity Broker works, we'll consider some of the examples and see how it goes.

Authenticate mobile application through ADFS using JWT Tokens

Configure any OAuth Provider with applications supports different protocols

Setup Active Directory as User Store and configure any application

We can connect with any External IDP/Directory

miniOrange provides user authentication from external directories like ADFS, Microsoft Active Directory, Azure AD, OpenLDAP, Google, AWS Cognito etc. It also provides user authentication with other IDPs like Shibboleth, PING, Okta, OneLogin, KeyCloak and many more.

Can't find your IDP ? Contact us on idpsupport@xecurify.com. We'll help you set it up in no time.

Single Sign On SSO identity provider


An Identity Provider provides authentication services to relying applications. Through this, you can use Single Sign-On (SSO) to access other websites. miniOrange Identity Server ( Identity Provider ) provides centralized, simple management and synchronization of identities for users, devices and things. It is highly flexible and therefore able to fit almost any use case and workflow. It is designed as unified platform for all your identity and access management needs combining all features in one.Integrate with any system and enhance capabilities with connectors.

Why use miniOrange as an Identity Provider ?

miniOrange acts as an identity provider through which you can integrate secure access to any application using our Single Sign-On (SSO) allowing end-users to easily and securely access many web and mobile applications with a single login.

Easy to Use

You can configure SSO for any kind of apps and whichever protocol it supports or even if it doesn't support any. You can even manage all of your apps and users/groups via proper admin interface in miniOrange Identity server.

Best in Pricing

We offer you best prices for our products as compared to other competitors in the market.

Easy to Install

miniOrange Server can be deployed on your system within minutes.

World-Class Support

You will get access to our world-class support team that has an answer for the most difficult Single Sign On (SSO) related issue. Our team brings extensive experience and expertise in Security Consulting and Product development.

How does miniOrange work as an Identity Provider?

Any application supporting SAML configuration can be configured here. The most common Applications following SAML protocol are Google Apps, Salesforce, Office 365 etc.

 SAML Single Sign On-SSO

You can integrate secure access to any OAuth, OpenID Connect application using our OpenID Connect Server.The most common Applications following OAuth/OIDC are AWS Cognito, Azure AD, Salesforce, Slack etc.

Single Sign On SSO OAuth/OIDC

You can add JWT app to enable SSO in any mobile app, client-side apps which doesn't support any standard protocols and built on platforms like React.js, Firebase, Cordova, Angular.js, etc. You can also add Password-Less app links to user portal from here.

Single Sign On SSO External/JWT/PwdLess

You can add any app which supports WS-FED standard protocol for single sign-on (sso). Few popular apps with out of the box integration are Microsoft Exchange Server, Dynamic CRM, etc.

Single Sign On SSO WS-Fed

You can add any VPN clients which support radius protocol to enable 2FA on VPN. Few Popular VPNs with out of the box integration are OpenVPN, Palo Alto, Pulse Secure, Cisco VPN, Fortinet, etc. You can also add a radius client app to enable 2FA on Windows/RDP/RDWeb login, etc.

Single Sign On SSO Radius

miniOrange browser extension /plugin is simple & easy to use which provides Single Sign On (SSO) with Secure Web Authentication.

Single Sign On SSO Browser Add-On/Form Post

How does miniOrange works as an Identity Broker?


Our SAML broker service acts as Service Provider to any Identity Providers of your choice following the same protocol. You can configure any Enterprise SAML IDP like ADFS, SimpleSamlPhp, Shibboleth, Google Apps, Okta, Salesforce, OneLogin, or any other SAML identity provider (IDP).

Single Sign On SSO saml

By using our broker services you can configure any OAuth Provider like Slack, Discord, AWS Cognito, Azure AD, Salesforce, etc. and provide Authentication to your users.

Single Sign On SSO oauth 2.0

OpenID Connect (OIDC) is simple an authentication layer on top of the OAuth protocol. This OIDC allows clients to verify the identity of an end-user and to obtain their basic profile information. We provide multiple OAuth Provider like Atlassian Crowd ,Azure AD, AWS Cognito, WHMCS, Ping Federate, Slack, Discord etc.

Single Sign On SSO open-id

It is a ticket-based Single Sign On(SSO) protocol that provides users access to web applications after authentication against a central CAS Server. By configuring CAS protocol, you permit a user to access multiple applications while providing their credentials (such as user id and password) only once. It also allows web applications to authenticate users without gaining access to a user’s security credentials, such as a password.

directory services Database pre-configured directory


By configuring here, allow the users to authenticate against various LDAP implementations like Microsoft Active Directory, OpenLDAP, and other directory systems and provide a login to any of your applications using credentials stored in your LDAP Server.

Single Sign On SSO AD/LDAP

Provide authentication, authorization, and user management for your web and mobile applications and allow your users to directly sign-in with a user name and password by configuring here.

Single Sign On SSO AWS Cognito

Configure your ConnectWise CRM with miniOrange users to perform Single Sign On (SSO) into your web and mobile applications.

Single Sign On SSO ConnectWise

Connect your existing My SQL, Microsoft SQL, Postgres SQL and other databases with miniOrange and allow your users authentication and Single Sign-On(SSO) without moving into miniOrange.

Single Sign On SSO Database

miniOrange Single Sign-On (SSO) APIs allows you to integrate SSO quickly and secure access to your applications.

Single Sign On SSO API

Provide user authentication and authorization by using RADIUS which verifies user's information (like username and password) by using various authentication schemes like PAP, CHAP, MS-CHAP, MS-CHAPv2 etc. and allows the request to access the system or service.

Single Sign On SSO Radius

miniOrange Identity Server will act as an Identity Provider that connects multiple service providers with existing user stores for authentication. If you want to connect with any other third party database/directory contact us for integration.

Single Sign On SSO miniOrange

Our Other Identity & Access Management Products