Secfense Identity Provider

Secfense IdP (Identity Provider) is a new addition to the Secfense product lineup. It was developed to simplify the management of multiple identities and facilitate seamless transitions between different IAM (Identity and Access Management) systems. With Secfense IdP, businesses can select features from various IAM providers without needing to commit to a full system overhaul.

To support applications that cannot be managed by reverse-proxy technologies, we leverage identity federation standards, particularly SAML.

For this, we connect a locally installed broker with a dedicated cloud tenant, which acts as the Identity Provider (IdP) according to the SAML protocol. Since it doesn’t store identities but rather handles their flow, it can be described as an Identity Dispatcher.

The role of this IdP is to provide a SAML interface for applications while keeping the current identity system that manages user identities shielded.

The primary purpose of Secfense IdP is to transition the existing user base to passwordless authentication by implementing the FIDO2 standards.