Cloud SSO Version 1.1.0

Cloud SSO icon  Cloud SSO

One Login. Easier Access for your Members.

                    

CSI's Cloud SSO prodcut supports the two major industry-standard SSO protocols: OpenID Connect and SAML 2.0. Turn your iMIS / RiSE database into an OpenID Connect IdP or SAML 2.0 IdP with no software to install!

Members login once with their iMIS credentials on any site (including a RiSE page).  From there, they will have a seamless experience navigating through your systems. Reduce time managing accounts and passwords since members only need to know one login. Only pass a subset of your members' data, all controlled by you.


Differences with iMIS SSO

The built-in iMIS SSO, referred to as "RiSE Client Applications", has some limitations. Here is a comparison between the two solutions:

Item iMIS / RiSE SSO CSI Cloud SSO
SSO initiated via RiSE1 (tick) (tick)
SSO initiated via third party2 (error) (tick)
Grants an iMIS REST API token3 (tick) (error)
Brandable Sign-in Screen (tick) (tick)
OpenID / OAuth Code Flow (error) (tick)
OpenID / OAuth Implicit Flow (error) (tick)
Token Introspection (error) (tick)
Token Revocation (error) (tick)
Customizable Profile Payload via IQA (error) (tick)
Supports Any OAuth2 / OpenID Client Plugin or Library (error) (tick)
Supports SAML 2.0-based SSO (error) (tick)

1 Refers to the ability to be on a RiSE page when signed in, and be taken to the third party via SSO.
2 Refers to the ability to be on, or navigate directly to a third party website, and initiate the SSO process without first going to RiSE.
3 iMIS REST API tokens are used to query data within the iMIS REST API. These tokens are not explicitly used for authentication or authorization purposes.

Want more info? Wanna dive in to the technical stuff? Check out our detailed Cloud SSO documentation - you'll find a list of supported OIDC/SAML modes, setup guides, and more!

CSI Cloud SSO Documentation

System Requirements

Requires iMIS 2017, iMIS 2020, or iMIS Cloud. Requires one or more compatible third-party systems which support acting as an OpenID Connect or SAML 2.0 Service Provider (SP).

Uses OpenID Connect or SAML 2.0 protocols, the same secure login protocols trusted industry-wide by all major technology companies.

Mix and match SAML and OpenID integrations - the Cloud SSO supports both at the same time!

Build a customized login page to match your branding.

Determine what data is passed to 3rd party systems using a customizable, per-integraiton IQA.

Release Notes Version 1.1.0 — Released September 1, 2020

  • Added support for SAML 2.0 as an IdP.
  • Added OpenID asymmetric key support.