We are excited to announce support for SAML 2.0, enabling Single-Sign-On (SSO) authentication with a customer’s identity provider. Since SAML is such a widely adopted protocol for SSO, the new addition reduces the amount of methods that Thru’s customers use to access their various cloud applications.
So What Is SAML 2.0?
For those not familiar of this subject, SAML 2.0 is an XML-based protocol used to pass information about employees between an identity provider (e.g. Active Directory Federation Services [ADFS]), and cloud service providers (e.g. Thru, Office365, Google Apps, Salesforce). SAML is used to exchange authentication and authorization data in a form of security tokens that contain assertions about the user.
Specifically, SAML can be used for SSO authentication between enterprises and the cloud service providers listed above. If SAML-based SSO is deployed, employees can easily access multiple cloud applications both inside and outside the office premises, and not have to maintain multiple credentials for each service.
How Does SAML 2.0 Work With Thru?
Currently, Thru’s qualified identity providers are Active Directory Federation Services (ADFS) and Salesforce (SFDC). With Thru now offering support for SAML 2.0, customers that already use SAML 2.0 with another identity provider can now easily sign on to Thru with a host of other cloud apps that they access using SAML 2.0. If an organization using Thru has all its employees listed in a corporate Active Directory, an ADFS gateway is deployed and the SAML 2.0 based protocol can be configured to automatically sign corporate users into Thru and create user accounts if required. Since large organizations have thousands of employees that access various online cloud accounts, Thru’s addition of SAML 2.0 support can eliminate additional overhead for users and administrators and simplify access.