About single sign-on authentication

It is possible to configure PolicyCenter to use single sign-on (SSO) authentication. In single sign-on operation, as the user logs into PolicyCenter:

• PolicyCenter generates a unique Cross-Site Request Forgery (CSRF) token for the user session.
• PolicyCenter forwards user information, including the CSRF token, to the authentication provider.
• The authentication provider checks the credentials for the user.
• The authentication provider returns an authentication confirmation back to PolicyCenter if the credentials are valid.

PolicyCenter includes the CSRF token in each authentication request and uses the CSRF token to verify the legitimacy of the user request.

See also

• Authentication integration