Cloudentity acts as an identity provider and leverages OpenID and SAML to connect social or enterprise identity providers for SSO.

Supported Social and Enterprise OpenId Providers

Most of the modern authentication provider support OIDC authentication protocol. Cloudentity can integrate with external provider natively with OIDC protocol to obtain the idToken and user info of users after end users finishes the authentication process with the provider. Cloudentity does not store the tokens from external providers after this process and it discards those token once the user info is mapped to its user context.

Some of the most commonly used auth providers with OIDC based integration are:

• Auth0
• AWS Cognito
• Azure AD
• Azure B2C
• Entrust
• Github
• Okta
• Keycloak

Some of the providers described above are available as native templates within Cloudentity, but in case you don’t find the provider of your choice templatized, you can see the generic OpenID provider template to connect to any OIDC compliant authentication provider

• OIDC provider(generic)

Supported Enterprise SAML Identity Providers

Some modern authentication provider and most of the legacy products support SAML protocol. Cloudentity can integrate with external provider natively with SAML protocol to obtain the SAML assertion after end users finishes the authentication process with the provider. Cloudentity does not store the assertions from external providers after this process and it discards those assertions once the user info is mapped to its user context.

Some of the most commonly used auth providers with SAML based integration are:

• Okta
• Keycloak
• OneLogin

Some of the providers described above are available as native templates within Cloudentity, but in case you don’t find the provider of your choice templatized, you can see the generic SAML provider template to connect to any SAML compliant authentication provider

• SAML provider(generic)

Cloudentity as Identity Provider

Identity Pools

Cloudentity can store user and authenticate users. Users identities and user populations are stored in Identity Pools that act as authentication providers.

Identity Pool is Cloudentity’s version of ultra scalable, high performance identity provider that is highly configurable at schema level and provides you the edge for high scalable use cases.

• Identity Pools

Sandbox Identity Provider

Cloudentity also provides a built in sandbox identity provider to add some users at ease for demos and proof of concepts.

• Sandbox

WARNING

This provider should not be enabled or added in production level environments. This is meant as quick demo identity provider without depending on any external identity provider to validate concepts.

Custom Enterprise Identity Providers

Cloudentity offers an integration mechanism to integrate your authentication providers that are neither SAML/OIDC compliant. This might be the case in case you are in digital transformation phase and want to utilize existing non compliant authentication provider, until you migrate towards a new authentication provider.

• Custom Idp
• Datastore provider