Contentstack Headless CMS Releases SAML 2.0-based Single Sign-On (SSO)

CMS secure single sign on SSO

Most companies (and their employees) use a number of tools and apps on the job. For administrators, however, managing the user logins of these apps can be daunting with security risks if you miss removing users from one of these apps when off-boarding them.

For users, remembering the login IDs and passwords can be frustrating and hard to track, especially when every minute matters for deadline-oriented projects.

We’ve solved this by introducing Single Sign-On, a mechanism that allows trusted applications to authenticate users into our headless CMS using your existing, corporate-approved credentials.

What is Single Sign-On (SSO)?

Single Sign-On is a mechanism that allows an external system (usually your company’s identity provider) to authenticate users and enable login to Contentstack.

How Does it Work with Contentstack API-First CMS?

SSO can be enabled for any organization in Contentstack, provided the feature is included in your plan. The SSO integration in Contentstack is powered by Security Assertion Markup Language 2.0 (SAML 2.0). This protocol is compatible with popular identity providers (IdP) such as Okta, OneLogin, Microsoft Azure, ADFS or any other SAML 2.0 IdP. If SSO is enabled for an organization, its users are redirected to the IdP’s sign-in page. After successful authentication, they will be automatically signed in to Contentstack.

Single Sign-On (SSO) Benefits

Enable better B2B collaboration

Using SSO means accessing all useful applications by logging in just once. This ensures quick navigation for users from one app to another, enabling seamless collaboration and exchange of information among partner companies.

Reduce help desk costs

According to Gartner, more than 50% of help desk calls are related to passwords. And, the bigger the workforce, the more calls you’ll get (and consequently, costs will increase). With SSO, this can be reduced dramatically, if not eliminated.

Improve compliance and security

Enabling SSO provides complete control over authorization and authentication of your users. This eliminates the risk of depending on any service provider for login security.

Facilitates ease of use

Users of a company can access all the required apps through one single authentication process. This ensures ease of use and better productivity.

SSO is a critical aspect of any organization’s technical infrastructure, especially as more applications move to the cloud. Some of the best companies in the world have adopted SSO for enhanced security, faster adoption of new services and to eliminate multiple passwords.

If you already have a corporate Identity Provider (IdP), enabling SSO for your Contentstack organization is fast and relatively painless. Refer to our guide to setting up SSO for more details.