Evidian Enterprise SSO

Enterprise SSO automates application logins by storing and entering passwords on the user’s behalf, with centrally defined password policies and auditing. It’s agent-based (Windows client; works in Citrix/virtual desktop environments) and can extend to macOS and mobile usage scenarios. For browser-based federation and API protection, Evidian positions Web Access Manager (reverse-proxy SSO, IdP/SP for SAML, OIDC, OAuth).

Key Capabilities

  • Password automation & policy control: Automatically enters application passwords and rotates them per policy, reducing help-desk resets and lockouts.

  • Covers legacy & thick clients: Works without modifying apps, including Windows, web, terminal emulators, and VDI (Citrix-ready/XenApp/XenDesktop).

  • Shared accounts & delegation: Enables named, audited use of generic accounts and user-to-user access delegation via a web portal.

  • Self-service & continuity: Built-in self-service password reset/unlock (incl. offline flows) and reporting/dashboards for compliance.

Limitations

  • Not a SAML/OIDC IdP: Enterprise SSO is credential vaulting/desktop SSO. Federation to cloud apps and API protection are provided by Web Access Manager / IDaaS. It does not itself issue SAML/OIDC/OAuth tokens.

  • Endpoint footprint: Requires deploying and maintaining the Enterprise SSO client on Windows endpoints (and associated components for VDI).

  • Password-based model: Benefits hinge on password capture/replay; to modernize app auth, customers typically pair with WAM (federation) or refactor apps to standards-based SSO.

  • Feature split across portfolio: MFA, passwordless, and federation capabilities are positioned in adjacent Evidian/Eviden products (Authentication Manager, Web Access Manager/IDaaS).

Customer Identity, Simplified.

No Complexity. No Limits.
Thousands of businesses trust LoginRadius for reliable customer identity. Easy to integrate, effortless to scale.

See how simple identity management can be. Start today!
Free Trial
Contact Sales