AWS SSO vs OneLogin
Last updated: December 09, 2017
AWS Single Sign-On (SSO) is a cloud SSO service that makes it easy to centrally manage SSO access to multiple AWS accounts and business applications. It enables users to sign in to a user portal with their existing corporate credentials and access all of their assigned accounts and applications from one place.
OneLogin provides the fastest path to identity management in the cloud with an on-demand solution consisting of single sign-on, multi-factor authentication, directory integration, user provisioning and a catalog with thousands of pre-integrated applications.
AWS SSO vs OneLogin in our news:
2017 - Amazon enters single sign-on market
Amazon released a single sign on product for the AWS cloud. With AWS SSO you can easily manage SSO access and user permissions to all of your accounts in AWS Organizations centrally. That’s very different from what other single sign on products like Okta or OneLogin are doing. These companies provide a much more comprehensive approach to single sign on, giving you a central way to log into all of your cloud services (and in some cases on-prem too). This saves you the pain of having separate user names and passwords for every account. You log in once and you have access to all of the included cloud services.
2017 - OneLogin brings some smarts to multi-factor authentication. Okta is in panic
Multi-factor authentication service OneLogin rolled out a new version of its mobile app that uses machine learning to determine your typical usage patterns and only asks you for a second factor when it determines that it’s absolutely necessary. Most MFA algorithms are rather rigid. If you’re on the network at work, you get asked for a password. If you’re not, you get asked for a second factor, but he says, it should be much more subtle than that, understanding how users access the network. The latest version of OneLogin OTP is designed to fix that. If you log in regularly from your home on the same laptop, after several times the system will learn that this is a common location and device, and you will be allowed onto the network without a second factor.
2016 - OneLogin acquires Sphere Secure Workspace to gain mobile management
Cloud identity management provider OneLogin has acquired Sphere Secure Workspace to add mobile device management to their identity-driven security model. Sphere provides a container approach to mobile security where your work content is separated from your personal content inside a virtual container on a single device. This is not a new approach by any means, but it gives OneLogin entree into the light-weight mobile device management space. With Sphere, the company simply blows away the container when an employee leaves a company or loses a device, and the person’s other content remains intact. It gives the employee access to work content in a more secure way with a single log-in, while protecting the personal content.
2011 - VMWare launches single sign-on service
As known, the main problems with SaaS-apps arise not with users, but with IT administrators, because they are losing control over what's happening. Because of this, they resist the SaaS implementation, claiming in particular, that they can't control authentication data across multiple SaaS services. To solve this problems, the new class of services appeared - SSO (Single Sign-on services). We have already reviewed one of them - OneLogin. There are some others, but all of them are semi-startups, which can't fully satisfy the IT staff. And finally there is a solution from the solid company - VMware Horizon App Manager.
As other similar solutions, VMware Horizon App Manager provides users a secure Web-portal, where they can login (one time) and see the list of available SaaS apps and in-house business applications, that they can enter in one click. At the moment the list of integrated services includes Google Apps, Salesforce, NetSuite, Webex, Box.net, DropBox, Basecamp, Zoho, Zimbra, etc.
And the users may not even know their passwords in these services - only the administrators knows. He also controls who can access the particular app and from which IP-address.
Horizon App Manager supports all the necessary authentication technologies (including oAuth, SAML, two-factor authentication) and integrates with corporate user directory Active Directory (or other LDAP-directory).
Horizon App Manager costs $30 per user per year.
2010 - OneLogin - Single sign-on for SaaS apps
Thanks to SaaS technology, a large number of business applications have appeared. Now companies can use multiple applications from different vendors (not just from Microsoft). But along with the wide variety of applications the problems of their integration and a single sign-on have come. Various platforms, marketplaces and SaaS associations are intended to solve these problems: Force.com, Intuit Partner Program, Google Apps Marketplace. OneLogin also tries to solve the single sign-on problem in simple and ingenious way. It is the centrally-administered username / password database + browser plugin, which makes working with a large number of SaaS applications very convenient.
It works like this. The user presses the button on the browser toolbar, and the page with list of all used applications is opened. Then he clicks on the needed application and logs in without entering login / password.
IT administrators can control all authentication data and sync it with Active Directory (or other directory via LDAP). It's also possible to limit allowed IP-addresses that can access apps. Of course, the level of security is dramatically increased.
In addition, OneLogin - is not just form-filler. It supports different authentication technologies, including OpenID, SAML, 2-factor authentication. But you can't use it with any application application - only with those that OpenLogin has official integration. Although this list - is pretty long.