Bring Your Own Identity (BYOI) Integration

If your organization already uses Single Sign-On (SSO) services for user authentication before accessing your cloud services, you can integrate with OPSWAT's IDaaS to prevent unauthorized access to your cloud applications. OPSWAT currently supports leading Identity Providers, including Okta, Entra ID (Azure), etc., as long as they support the Security Assertion Markup Language (SAML) protocol.

If your organization uses Okta or Microsoft Entra, follow the guides below to set up single sign-on (SSO)

• Set up SSO with Microsoft Entra
• Set up SSO with Okta

How to Integrate with OPSWAT's IDaaS

Integration between your organization's identity provider and OPSWAT’s service requires an exchange of key configuration details.

Step 1: Request Integration Support To begin the integration process, please open a support case via Support feature in My OPSWAT Portal and request SSO integration assistance. Our team will guide you through the steps and help with the configuration.

Step 2: Exchange Information

Organization → OPSWAT:

• Customer Company Name and Domain
• Identity Provider (IdP) metadata file (*.xml), exported from your IdP’s settings console
• Confirmation that the following SAML attributes are configured:
  • NameID Format: Email Address
  • Attribute Statement (included in the SAML token):
    • firstName
    • lastName
    • emailAddress

OPSWAT → Organization:

• IdP Start URL: Provided for SP-Initiated SSO workflows.
• Assertion Consumer Service (ACS) URL: A unique post-back SSO URL for each application. OPSWAT uses this URL to forward the authentication message from your IdP to the appropriate OPSWAT service after verification.

Step 3: Authentication Flow

Once the integration is successfully completed and confirmed by an OPSWAT account representative, users attempting to log in to My OPSWAT Portal will be redirected to your configured Identity Provider for credential verification. Upon successful authentication, the user is redirected back to My OPSWAT Portal.