Cloud Service Providers (CSP) Will Compete for Your Business

You have what they want - The Workload.

XtremeCloud Single Sign-On (SSO), as an identity and access management (IAM) platform, provides cross-cloud (CC), Cross-Site (x-site), and Cross-Datacenter (xDC) single sign-on (SSO) capabilities.

XtremeCloud Single Sign-On (SSO)  is a  multi-cloud  application as we define it. This is not the multi-cloud variety where you pick and choose which workloads are going to be run on which CSP. XtremeCloud applications run the full workload on each CSP in a service mesh. Users transactions are routed to a CSP based on the load-balancing configuration. The load can be split amongst the CSPs to have the best Service Level Agreements (SLA) at the best price point. 

XtremeCloud SSO provides unparalleled resiliency across major Cloud Service Providers (CSP) like Google Cloud Platform, Microsoft Azure, Oracle Cloud, IBM Cloud, and Amazon Web Services (AWS). For enterprises that have additional hardware capacity, a multi-cloud configuration can be set up to run part of the homogeneous distributed workload on a CSP and part of the workload in-house on an on-premise private cloud. You can even split the operations and support between your on-premise team by having one of our Managed Services Provider (MSP) running XtremeCloud Single Sign-On (SSO) for you. Think of the possibilities of covering any workshift you want by literally outsourcing it on an shift-by-shift basis. No longer is it necessary to staff up three (3) shifts over a seven (7)-day week with entirely in-house staff. Even some of your key personnel can get PTO when they need it and your operations and support efforts are not impacted. 

XtremeCloud SSO utilizes key open source components, to provide leading edge functionality in our  Cyber SAFE Continuum  product series. XtremeCloud Single-Sign-On is provided for a variety of mobile, workstations,  and web applications.

Protect all of your Kubernetes applications which can deployed to any Kubernetes-based cluster. XtremeCloud SSO can  be deployed in single-tenancy or multi-tenancy mode.  OpenID Connect (OIDC) and SAML 2.0 protocols are supported. When securing clients and services the first thing you need to decide is which of the two you are going to use. If you want, you can also choose to secure some with OpenID Connect (OIDC) and others with SAML. With XtremeCloud SSO, you have that flexibility. 

To secure clients and services, you are also going to need an adapter or library for the protocol you’ve selected.  XtremeCloud SSO  comes with its own adapters for selected platforms, but it is also possible to use a generic OIDC Resource Provider or SAML Service Provider (SP) libraries.

Specific Features:
  1. Single-Sign On (SSO) and Single-Sign Out for browser applications.

  2. OpenID Connect (OIDC) support.

  3. OAuth 2.0 support.

  4. SAML2 support.

  5. Identity Brokering - Authenticate with external OpenID Connect (OIDC) or SAML Identity Providers.

  6. Social Login - Enable login with Google, GitHub, Facebook, Twitter, and other social networks.

  7. User Federation - Sync users, or query users attributes, from  XtremeCloud Data Grid-ldap  , other LDAP servers, and Microsoft Active Directory (AD) servers.

  8. Kerberos bridge - Automatically authenticate users that are logged-in to a Kerberos server.

  9. Admin Console for central management of users, roles, role mappings, clients and configuration.

  10. Account Management console that allows users to centrally manage their account.

  11. Theme support - Customize all user facing pages to integrate with your applications and branding.

  12. Two-factor Authentication - Support for TOTP/HOTP via Google Authenticator or FreeOTP.

  13. Login flows - optional user self-registration, recover password, verify email, require password update, etc.

  14. Session management - Admins and users themselves can view and manage user sessions.

  15. Token mappers - Map user attributes, roles, etc. how you want into tokens and statements.

  16. Not-before revocation policies per realm, application and user.

  17. CORS support - Client adapters have built-in support for CORS.

  18. Service Provider Interfaces (SPI) - A number of SPIs to enable customizing various aspects of the server. Authentication flows, user federation providers, protocol mappers and many more.

  19. Client adapters for JavaScript applications, WildFly, JBoss EAP, Fuse, Tomcat, Jetty, Spring, and more.

  20. Supports any platform/language that has an OpenID Connect (OIDC) Resource Provider library or SAML 2.0 Service Provider library

Details on how to administer this Active-Active multi-cloud cloud-native application and use the SSO service as a Service Provider (SP) or Relying Party (RP) are covered in the  XtremeCloud  SSO Quick Start Guide .

Xtreme Cloud SSO Administration Screen