“The average cost of a single password reset done by help desk is about $70”
“20% to 50% of all help desk calls are for password resets”
How can OmniDefend’s Single Sign-On Features Help You?
OmniDefend features an enterprise class single sign-on engine that allows you to reduce IT friction and enable strong authentication into virtually all your business applications. OmniDefend supports standards based SSO using SAML, OpenId Connect and Active Directory Federation Services, or you can use OmniDefend’s built in PasswordVault SSO for applications that do not support any SSO standard. Watch the video to see OmniDefend’s single sign-on features in action.
Universal SSO Engine
Application and website login screens can be classified into 2 categories: those that implement an industry standard login process compatible with OAuth2, OpenID Connect, SAML or WS-Federation, and those legacy sites that follow no standard. OmniDefend’s Universal SSO Engine can be an identity provider to any site that complies with the standards listed above, or it can store a user’s username and password in its secure OmniVault and fill it into a legacy site that follows no standard.
Not all applications run in a browser. For all those local and on-premise desktop applications, OmniDefend’s Universal SSO Engine is able to use its secure OmniVault to replay the username and password into the login screen. This can be done even with text-based logins like those seen in applications run in terminal emulators (“green screens”).
Need to quickly provision an application using SSO? OmniDefend provides the OmniDefend SSO Store where you can search for your application and pull the SSO profile for that application into your organization so that it can be provisioned to your workforce. If you create a profile for a new application, you can share it on the store so the community of OmniDefend users can all benefit.
OmniDefend allows you to use any of the supported authentication methods to authenticate a user every time they access a secured application in your business. This includes using biometrics like fingerprint and face or security devices like smart card, tokens or FIDO2 and U2F compatible hardware.
OmniDefend allows you to provision SSO profiles to your users based on their roles and groups. OmniDefend’s SSO engine can use your Active Directory (AD) to read a user’s group membership and then provision different applications to those that need them in your organization.
OmniDefend’s real-time reporting engine records all access events to secured applications and resources. With our real-time reporting capability, you can quickly find out who accessed which application, at what time, and from which machine. Reporting data can be exported into multiple formats for use with various third party reporting software.