Alternate authentication and login options (including single sign-on)

Your users can use a variety of authentication methods to authenticate to Venafi Platform products, including certificate authentication, Windows authentication, and true single sign-on (SSO) authentication.

This section describes how to set up alternate ways to log in to the Trust Protection Platform in place of the native log in.

The web console supports the following authentication methods:

Default username and password authentication built-in to Trust Protection Platform. You can either use local users (managed within Trust Protection Platform itself), or you can use an identity provider like LDAP or Active Directory to manage your users.
Certificate-based authentication
Integrated MS Windows Authentication
SAML v2 SSO

In addition, the Web SDK supports the following additional authentication methods:

Device authentication
JSON Web Token (JWT) authentication

TIP To browse topics in this section, use the menu on the left side of this page.