Modern business architectures require more flexible approaches to meet expectation of good security and great user experience
In today's dynamic business environment, using external identities has become essential due to partnerships, mergers, acquisitions and the increasing use of social logins. This presentation will explore the need for and implementation of Single Sign-On (SSO) for end users through identity federation.
Key topics include the concept of bearer tokens for client and user authentication, a comprehensive overview of the architecture showing where identities are consumed, and the token exchange protocol that can be used to improve security. We will also discuss identity enforcement through preemptive identity verification at gateways and the integration of Web Application Firewall (WAF) and API gateway capabilities to support Zero Trust principles.
The session will conclude with a discussion of the proposed setup's benefits for application integration and identity information propagation. Attendees will better understand how to effectively manage identities and ensure secure, seamless access across disparate systems.
