SSO vs Local login

MStritt
Tera Guru

‎08-28-2020 07:47 PM

We have a mixture of SSO and Local logins. It is possible, that some SSO users will use Local login (when network is down, etc.). Is there anyway to determine what type of login users used in their last login?

0 Helpfuls
  • 3,654 Views
1 REPLY 1

Gaurav Shirsat
Mega Sage

‎08-28-2020 09:27 PM

Single sign-on (SSO) is a property of identity and access management (IAM) that enables users to securely authenticate with multiple applications and websites by logging in only once—with just one set of credentials (username and password).

Login local refers to the local database to login to vty lines,such as local user u have configured. login is an option to specify if any one wants to connect to or authenticate to an vty lines.

How does authentication work without SSO?

Without single sign-on, each website maintains its own database of users and their credentials. This is what happens when you try to log in to an app or website:

  1. The website first checks to see whether you’ve already been authenticated. If you have, it gives you access to the site.
  2. If you haven’t, it asks you to log in and it checks your username and password against the information in its user database.
  3. After login, the site passes authentication verification data as you move through the site to verify that you are authenticated each time you go to a new page.

The authentication verification data is usually passed as either cookies with session data or as tokens, which don’t track the session and are faster to process.

How does SSO work?

Authentication with SSO relies on a trust relationship between domains (websites). With single sign-on, this is what happens when you try to log in to an app or website:

  1. The website first checks to see whether you’ve already been authenticated by the SSO solution, in which case it gives you access to the site.
  2. If you haven’t, it sends you to the SSO solution to log in.
  3. You enter the single username/password that you use for corporate access.
  4. The SSO solution requests authentication from the identity provider or authentication system that your company uses. It verifies your identity and notifies the SSO solution.
  5. The SSO solution passes authentication data to the website and returns you to that site.
  6. After login, the site passes authentication verification data with you as you move through the site to verify that you are authenticated each time you go to a new page.

In SSO, authentication verification data takes the form of tokens.

The below Docs Link will guide you better 

https://docs.servicenow.com/bundle/orlando-platform-administration/page/integrate/single-sign-on/con...

Please Mark Correct and Helpful

Thanks and Regards

Gaurav Shirsat