SAML 2.0 IDP setup: Field not documented in on-line documentation: IdP Usage: SSO or Factor

User16594883467582706479 (Customer Support Online Experience)

2 years ago

Thank you for posting on our Community page!

Basically, the difference is related to how an end-user signs in.

When a user signs in to a service with their SSO login, an authentication token is created and stored either in their browser or in the SSO solution’s servers. Any app or website the user subsequently accesses will check with the SSO service, which then sends the user’s token to confirm their identity and provide them with access.

Multifactor authentication (MFA) is an added layer of security used to verify an end user's identity when they sign in to an application.

An Okta admin can configure MFA and require end users to verify their identity when accessing their Okta org, their applications, or both.

The basic documentation for this use case contains:

https://help.okta.com/en-us/content/topics/provisioning/azure/azure-integrate-main.htm

https://help.okta.com/en-us/content/topics/security/idp-add-saml.htm

https://www.okta.com/blog/2021/02/single-sign-on-sso/

https://help.okta.com/en-us/content/topics/security/mfa/about-mfa.htm

Should you want us to add to it, please open a case with Support and they will assist with your query.

Thank you for reaching out to our Community and have a great day!

Ask the Experts: Now Thru 1/31 Okta FastPass Engineering and Product Teams Answer Your Questions

_____________________________________________________________________________

Community members help others by clicking Like or Select as Best on responses. Try it today.

_____________________________________________________________________________

Expand Post

User16594883467582706479 (Customer Support Online Experience)
2 years ago
Hi, @PeterH.40873 (Customer)

Thank you for posting on our Community page!

Basically, the difference is related to how an end-user signs in.

When a user signs in to a service with their SSO login, an authentication token is created and stored either in their browser or in the SSO solution’s servers. Any app or website the user subsequently accesses will check with the SSO service, which then sends the user’s token to confirm their identity and provide them with access.

Multifactor authentication (MFA) is an added layer of security used to verify an end user's identity when they sign in to an application.
An Okta admin can configure MFA and require end users to verify their identity when accessing their Okta org, their applications, or both.

The basic documentation for this use case contains:
https://help.okta.com/en-us/content/topics/provisioning/azure/azure-integrate-main.htm
https://help.okta.com/en-us/content/topics/security/idp-add-saml.htm
https://www.okta.com/blog/2021/02/single-sign-on-sso/
https://help.okta.com/en-us/content/topics/security/mfa/about-mfa.htm

Should you want us to add to it, please open a case with Support and they will assist with your query.

Thank you for reaching out to our Community and have a great day!

Ask the Experts: Now Thru 1/31 Okta FastPass Engineering and Product Teams Answer Your Questions
_____________________________________________________________________________
Community members help others by clicking Like or Select as Best on responses. Try it today.
_____________________________________________________________________________

Expand Post

Your Privacy

Your Privacy

Strictly Necessary Cookies

Strictly Necessary Cookies

Functional Cookies

Functional Cookies

Performance Cookies

Performance Cookies

Share or Sell of Personal Data

Share or Sell of Personal Data

Advertising Cookies

Your Privacy

Your Privacy

Strictly Necessary Cookies

Strictly Necessary Cookies

Functional Cookies

Functional Cookies

Performance Cookies

Performance Cookies

Share or Sell of Personal Data

Share or Sell of Personal Data

Advertising Cookies