frevvo supports the creation of a tenant using the SAML (Security Assertion Markup Language) Security Manager. Users in this tenant can log into frevvo via SAML version 2.0. SAML enables internet single sign-on by allowing users to authenticate at an identity provider and then access service providers without additional authentication.

The SAML Security manager is for customers who expose their user identities over the internet via the SAML single sign-on (SSO) standard.

SAML requires the configuration and installation of an identity provider that supports SAML 2.0. Some examples are Google, Okta, Shibboleth, OpenSSO, ADFS, and PingFederate, OneLogin.

In a SAML environment, integration with an LDAP server for authentication is common. In general, here's how it works:

User A attempts to access frevvo by typing the URL into the browser
frevvo sends a SAML request for authentication to the Identity Provider
The Identity Provider requires more information. The Identify Provider login screen is displayed.
User A logs into the Identity Provider.
The Identity Provider may communicate with your LDAP server for authentication.
The Identity Provider builds and sends a SAML token to frevvo containing the security information for User A.
frevvo processes the information. If User A has been authenticated, frevvo establishes a session and redirects User A to the correct frevvo screen depending on User A's authorization level.

Browser not supported