Single Sign On Integration

Single Sign-On (SSO) Integration in CERTInext allows users to authenticate using their enterprise identity provider, eliminating the need for separate platform credentials and aligning access with corporate identity policies.

SSO centralizes authentication while allowing CERTInext to enforce role-based authorization internally.

Supported Authentication Models

CERTInext supports industry-standard authentication protocols, enabling integration with enterprise identity platforms using:

• SAML 2.0

• OAuth 2.0 / OpenID Connect

This allows organizations to integrate CERTInext with commonly used identity providers such as Microsoft (Azure Active Directory) and Okta.

How SSO Works in CERTInext

When SSO is enabled:

• Users are redirected to the enterprise identity provider for authentication

• Identity validation, password policies, and MFA are enforced by the IdP

• Upon successful authentication, users are mapped to CERTInext roles and groups

• Access is granted based on assigned permissions within CERTInext

CERTInext does not store enterprise passwords, reducing credential exposure risk.

User Lifecycle Management

SSO simplifies user lifecycle management by:

• Enabling centralized onboarding through the identity provider

• Automatically enforcing access removal when users are deactivated at the IdP

• Ensuring consistent access policies across applications

This reduces administrative overhead and improves security consistency.

Audit and Compliance

All SSO authentication events are logged within CERTInext, including:

• Login attempts and outcomes

• Identity provider used

• User session activity

This provides audit-ready visibility and supports compliance with enterprise security and governance requirements.