{"id":43387,"date":"2026-07-10T10:36:22","date_gmt":"2026-07-10T08:36:22","guid":{"rendered":"https:\/\/smartfense.com\/?p=43387"},"modified":"2026-07-10T10:36:27","modified_gmt":"2026-07-10T08:36:27","slug":"automatic-sso-integration-end-to-end","status":"publish","type":"post","link":"https:\/\/smartfense.com\/en\/blog\/automatic-sso-integration-end-to-end\/","title":{"rendered":"Automatic SSO integration: how it works end to end"},"content":{"rendered":"<p>Rolling out a security awareness program to ten thousand employees carries a cost that almost no one puts on the table at the start: creating and maintaining ten thousand accounts. Every hire, every departure, every role change is one more user to provision on one more platform, with one more password the employee will forget. Login looks like a minor detail until you multiply it by the headcount of a large group, and at that point it stops being minor.<\/p>\n<p>SSO removes that friction, but it usually gets sold as a checkbox (\u201cdoes it have SSO? yes\u201d) without explaining what actually happens between the moment the employee clicks and the moment they\u2019re in the program. That \u201cwhat actually happens\u201d is what decides whether the integration takes an afternoon or turns into a multi-week project. <a href=\"https:\/\/www.verizon.com\/business\/resources\/reports\/dbir\/\" target=\"_blank\" rel=\"noopener noreferrer\">The Verizon DBIR<\/a> consistently places stolen credentials among the top initial-access vectors into organizations, so reducing the number of passwords each employee juggles isn\u2019t just convenience but attack surface that shrinks.<\/p>\n<h2>What SSO does (and doesn\u2019t) solve in an awareness platform<\/h2>\n<p>Single sign-on (SSO) is the mechanism by which an employee accesses the platform with the same corporate credentials they already use for the rest of their tools, without creating or remembering a username and password specific to the platform. Authentication isn\u2019t solved by the platform: it\u2019s delegated to the organization\u2019s identity provider (IdP), which already knows who that person is.<\/p>\n<p>That\u2019s exactly what it solves, and it\u2019s worth being precise about the boundary. SSO answers the question <em>\u201dis this person who they claim to be?\u201d<\/em> at the moment of access. It doesn\u2019t answer <em>\u201dshould this person exist in the platform at all?\u201d<\/em>. That second question (creating, deactivating, and updating accounts) is provisioning, and it\u2019s a separate problem solved by a different piece. Confusing the two is the most common reason a deployment \u201cwith SSO\u201d still hides manual work.<\/p>\n<h2>How does the SSO authentication flow work end to end?<\/h2>\n<p>The standard behind most of these integrations is SAML 2.0. SAML has two actors: the <strong>identity provider<\/strong> (IdP), which is the corporate system where the employee\u2019s identity lives, and the <strong>service provider<\/strong> (SP), which in this case is the awareness platform. The end-to-end flow, when the employee starts from the platform, goes like this:<\/p>\n<ol>\n<li>The employee opens the platform and it detects there\u2019s no active session.<\/li>\n<li>The platform (SP) redirects the browser to the corporate IdP with a signed authentication request.<\/li>\n<li>The IdP authenticates the employee with its own rules: password, second factor, conditional access policies, whatever the organization has configured.<\/li>\n<li>If authentication succeeds, the IdP returns a signed <strong>SAML assertion<\/strong> to the browser, a document stating \u201cthis person is who they claim to be, and these are their attributes\u201d.<\/li>\n<li>The platform validates that assertion\u2019s signature against the IdP\u2019s certificate, reads the attributes, and opens the session.<\/li>\n<\/ol>\n<p>The employee sees only one thing: they click and they\u2019re in. The whole exchange of the request, the assertion, and the signature validation happens in milliseconds and without them typing anything. The other possible starting point is the reverse, where the employee starts from the corporate portal (IdP-initiated) and jumps into the platform already authenticated, but the mechanics of the signed assertion are the same.<\/p>\n<p>What matters for anyone evaluating the platform is that trust doesn\u2019t rest on a password shared between two systems, but on cryptography: the SP trusts the IdP because it can verify its signature, not because it stores a secret. That\u2019s why SSO is more secure than replicating passwords, and it\u2019s the same logic of delegating to the right system that we apply when we explain <a href=\"https:\/\/smartfense.com\/en\/blog\/why-we-integrate-via-api-not-an-agent\/\">why we integrate by API and not by agent<\/a>.<\/p>\n<h2>Are SSO and user provisioning the same thing?<\/h2>\n<p>No, and keeping them apart is what lets the program scale without manual work. SSO authenticates; provisioning creates, updates, and deactivates accounts. An employee can only authenticate via SSO if their account already exists in the platform, so provisioning is the prior step you have to solve separately.<\/p>\n<p>Provisioning can be handled two ways without adding accounts by hand, and they\u2019re not equivalent. The one that sustains the program over time is <strong>directory synchronization<\/strong>: the platform connects to the corporate directory, via LDAP or importing from Microsoft Entra ID or Google, and keeps the employee roster aligned with the organization\u2019s source of truth. When someone joins or leaves the company, the change propagates without the program owner touching anything.<\/p>\n<p>The other option, simpler to start with, is importing the roster manually from a CSV file, when you\u2019d rather not connect the full directory. It works for the initial rollout, but it\u2019s a snapshot of one moment and doesn\u2019t reflect later joiners or leavers. Deactivation, moreover, is the case that matters most from a security standpoint: an employee who left the company but still has an active account is a gap.<\/p>\n<p>That\u2019s why directory-based provisioning, where deactivating the employee in the corporate system carries over to their status in the platform, is the one that closes that gap at the root. It\u2019s the same single-source-of-truth principle behind <a href=\"https:\/\/smartfense.com\/blog\/buena-segura-y-barata-sincronizacion-con-microsoft-azure-active-directory-en-plataformas-saas\/\">how directory synchronization with Microsoft Entra ID (formerly Azure AD) works<\/a>.<\/p>\n<h2>What makes an SSO integration \u201cautomatic\u201d and not a multi-week project?<\/h2>\n<p>The difference between an afternoon\u2019s integration and one that runs for weeks isn\u2019t the standard (SAML is the same for everyone) but how much of the setup depends on exchanging configuration files by hand. An automatic integration reduces that setup to three things handled cleanly:<\/p>\n<ol>\n<li><strong>Metadata exchange instead of manual configuration.<\/strong> The IdP and the platform describe each other with a standard metadata file (URLs, certificates, identifiers). Loading that metadata from one side to the other replaces copying and pasting individual fields, which is where the hard-to-diagnose errors show up.<\/li>\n<li><strong>Explicit attribute mapping.<\/strong> The IdP\u2019s assertion carries attributes (name, email, department, maybe the subsidiary\u2019s country) and the platform needs to know which field each one maps to. Defining that mapping once, with judgment, is what avoids having to tweak it every time a new employee comes in.<\/li>\n<li><strong>One IdP per tenant when there are several organizations.<\/strong> In a group with subsidiaries, each one may have its own identity provider. A multi-tenant architecture lets each subsidiary connect its IdP without stepping on the others, something that becomes necessary once you\u2019re sustaining <a href=\"https:\/\/smartfense.com\/en\/blog\/multi-language-awareness-multinationals\/\">a multi-language program with HQ in Spain and subsidiaries in LATAM<\/a>.<\/li>\n<\/ol>\n<p>When those three things are handled, adding SSO stops being a project milestone and becomes a configuration step. The employee never sees any of this, which is exactly the point.<\/p>\n<h2>How does SSO fit into SMARTFENSE\u2019s architecture?<\/h2>\n<p>SMARTFENSE solves authentication by delegating it to each organization\u2019s identity provider. The platform supports <strong>universal authentication via SAML 2.0<\/strong>, which lets it integrate with any IdP that speaks the standard, and it also imports and authenticates employees directly from <strong>Microsoft Entra ID<\/strong> and <strong>Google<\/strong>, and supports authentication from <strong>Auth0<\/strong>. Provisioning is covered by the other track: <strong>user synchronization via the LDAP directory<\/strong> and importing from those same providers, so the employee roster stays aligned with the organization\u2019s source of truth.<\/p>\n<p>For the cases that need to go beyond what configuration solves (automating hires and departures with custom logic, or connecting the roster to another internal system), the platform exposes a <strong>documented REST API with OAuth 2.0 and JSON<\/strong> for user management and results. The full list of these identity and directory integrations is on the <a href=\"https:\/\/smartfense.com\/en\/platform\/integrations\/\">platform integrations page<\/a>, and how employees are managed once inside is covered in <a href=\"https:\/\/smartfense.com\/en\/platform\/users-and-smart-groups\/\">users and smart groups<\/a>.<\/p>\n<p>The result, seen from the program\u2019s operation, is that the responsible team doesn\u2019t administer passwords or add accounts by hand: identity is solved by the system that already held it, and the platform handles its own job, which is measuring and changing people\u2019s behavior.<\/p>\n<h2>Frequently asked questions<\/h2>\n<p><strong>Does SSO mean SMARTFENSE stores my employees\u2019 passwords?<\/strong><br \/>\nNo. With SSO the platform never sees or stores the corporate password. Authentication happens at the organization\u2019s identity provider, which returns a signed assertion; the platform only verifies that signature to open the session.<\/p>\n<p><strong>Can I use SSO without synchronizing my whole directory?<\/strong><br \/>\nYes. SSO authentication and account provisioning are independent pieces. You can authenticate via SAML and load the roster by importing it from a CSV file, or synchronize the directory via LDAP to keep hires and departures aligned. They\u2019re separate decisions.<\/p>\n<p><strong>What happens when an employee leaves the company?<\/strong><br \/>\nIf provisioning is directory-based, deactivating the employee in the corporate system propagates to the platform and their access is closed without manual intervention. This is the point most worth solving through synchronization rather than on-the-fly account creation.<\/p>\n<p><strong>Is SSO useful for a group with several subsidiaries?<\/strong><br \/>\nYes. A multi-tenant architecture lets each subsidiary connect its own identity provider independently, keeping the program unified at the group level while each organization\u2019s authentication is handled separately.<\/p>\n<p><strong>How long does an SSO integration take?<\/strong><br \/>\nIt depends on whether the setup relies on metadata exchange and attribute mapping defined once, or on manual field-by-field configuration. With the former, adding SSO is a configuration step; with the latter, it stretches out because of hard-to-diagnose errors.<\/p>\n<p>If you\u2019re evaluating how to take your awareness program to the whole organization without adding one more password or provisioning accounts by hand, the <a href=\"https:\/\/smartfense.com\/en\/platform\/\">SMARTFENSE platform<\/a> solves authentication and provisioning by leaning on the identity your organization already manages.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>How an automatic SSO integration works in a security awareness platform: the end-to-end SAML authentication flow, and how it differs from provisioning.<\/p>\n","protected":false},"author":4,"featured_media":43384,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[3,686],"tags":[2292,2290,1709,2297,2294],"class_list":["post-43387","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-blog","tag-authentication-security","tag-integration","tag-plataforma-en","tag-user-import","tag-user-management"],"acf":[],"yoast_head":" \n<title>Automatic SSO integration end to end<\/title>\n<meta name=\"description\" content=\"How an automatic SSO integration works in a security awareness platform: the end-to-end SAML authentication flow, and how it differs from provisioning.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/smartfense.com\/en\/blog\/automatic-sso-integration-end-to-end\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Automatic SSO integration end to end\" \/>\n<meta property=\"og:description\" content=\"How an automatic SSO integration works in a security awareness platform: the end-to-end SAML authentication flow, and how it differs from provisioning.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/smartfense.com\/en\/blog\/automatic-sso-integration-end-to-end\/\" \/>\n<meta property=\"og:site_name\" content=\"SMARTFENSE\" \/>\n<meta property=\"article:published_time\" content=\"2026-07-10T08:36:22+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-07-10T08:36:27+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/smartfense.com\/file\/2026\/07\/hero-1-6.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1376\" \/>\n\t<meta property=\"og:image:height\" content=\"768\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Mauro S\u00e1nchez\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Mauro S\u00e1nchez\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"8 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/automatic-sso-integration-end-to-end\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/automatic-sso-integration-end-to-end\\\/\"},\"author\":{\"name\":\"Mauro S\u00e1nchez\",\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/#\\\/schema\\\/person\\\/cd90acca0dbd51ffdec4d346f3cf90b2\"},\"headline\":\"Automatic SSO integration: how it works end to end\",\"datePublished\":\"2026-07-10T08:36:22+00:00\",\"dateModified\":\"2026-07-10T08:36:27+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/automatic-sso-integration-end-to-end\\\/\"},\"wordCount\":1596,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/automatic-sso-integration-end-to-end\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/smartfense.com\\\/wp-content\\\/uploads\\\/2026\\\/07\\\/hero-1-6.jpg\",\"keywords\":[\"authentication security\",\"integration\",\"plataforma\",\"user import\",\"user management\"],\"articleSection\":[\"Blog\",\"Blog\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/automatic-sso-integration-end-to-end\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/automatic-sso-integration-end-to-end\\\/\",\"url\":\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/automatic-sso-integration-end-to-end\\\/\",\"name\":\"Automatic SSO integration end to end\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/automatic-sso-integration-end-to-end\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/automatic-sso-integration-end-to-end\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/smartfense.com\\\/wp-content\\\/uploads\\\/2026\\\/07\\\/hero-1-6.jpg\",\"datePublished\":\"2026-07-10T08:36:22+00:00\",\"dateModified\":\"2026-07-10T08:36:27+00:00\",\"description\":\"How an automatic SSO integration works in a security awareness platform: the end-to-end SAML authentication flow, and how it differs from provisioning.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/automatic-sso-integration-end-to-end\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/automatic-sso-integration-end-to-end\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/automatic-sso-integration-end-to-end\\\/#primaryimage\",\"url\":\"https:\\\/\\\/smartfense.com\\\/wp-content\\\/uploads\\\/2026\\\/07\\\/hero-1-6.jpg\",\"contentUrl\":\"https:\\\/\\\/smartfense.com\\\/wp-content\\\/uploads\\\/2026\\\/07\\\/hero-1-6.jpg\",\"width\":1376,\"height\":768,\"caption\":\"Una \u00fanica puerta-torniquete de cristal en un lobby corporativo por la que fluye una corriente de profesionales hacia varios corredores luminosos, como met\u00e1fora de un solo acceso que abre muchos sistemas.\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/blog\\\/automatic-sso-integration-end-to-end\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Portada\",\"item\":\"https:\\\/\\\/smartfense.com\\\/en\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Automatic SSO integration: how it works end to end\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/#website\",\"url\":\"https:\\\/\\\/smartfense.com\\\/en\\\/\",\"name\":\"SMARTFENSE - Concienciaci\u00f3n en Ciberseguridad\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/smartfense.com\\\/en\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/#organization\",\"name\":\"SMARTFENSE\",\"url\":\"https:\\\/\\\/smartfense.com\\\/en\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/smartfense.com\\\/wp-content\\\/uploads\\\/2023\\\/08\\\/logo-smartfense-240x40-1.png\",\"contentUrl\":\"https:\\\/\\\/smartfense.com\\\/wp-content\\\/uploads\\\/2023\\\/08\\\/logo-smartfense-240x40-1.png\",\"width\":241,\"height\":40,\"caption\":\"SMARTFENSE\"},\"image\":{\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/smartfense.com\\\/en\\\/#\\\/schema\\\/person\\\/cd90acca0dbd51ffdec4d346f3cf90b2\",\"name\":\"Mauro S\u00e1nchez\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/621a5d64e5ca57cf623fa5d310c5031d6b035d29d4b85e2976aa9d8cceba2373?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/621a5d64e5ca57cf623fa5d310c5031d6b035d29d4b85e2976aa9d8cceba2373?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/621a5d64e5ca57cf623fa5d310c5031d6b035d29d4b85e2976aa9d8cceba2373?s=96&d=mm&r=g\",\"caption\":\"Mauro S\u00e1nchez\"},\"description\":\"CTO de SMARTFENSE, lidera los equipos de ingenier\u00eda y desarrollo. Especialista en materia de ciberseguridad e infraestructura, siendo el encargado de definir y concretar las integraciones y alianzas tecnol\u00f3gicas estrat\u00e9gicas de SMARTFENSE con diferentes soluciones. M\u00e1s de 20 a\u00f1os avalan su experiencia en la toma de decisi\u00f3n e implementaci\u00f3n de medidas de seguridad y tecnolog\u00eda.\",\"url\":\"https:\\\/\\\/smartfense.com\\\/en\\\/author\\\/mauro-sanchez\\\/\"}]}<\/script>\n ","yoast_head_json":{"title":"Automatic SSO integration end to end","description":"How an automatic SSO integration works in a security awareness platform: the end-to-end SAML authentication flow, and how it differs from provisioning.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/smartfense.com\/en\/blog\/automatic-sso-integration-end-to-end\/","og_locale":"en_US","og_type":"article","og_title":"Automatic SSO integration end to end","og_description":"How an automatic SSO integration works in a security awareness platform: the end-to-end SAML authentication flow, and how it differs from provisioning.","og_url":"https:\/\/smartfense.com\/en\/blog\/automatic-sso-integration-end-to-end\/","og_site_name":"SMARTFENSE","article_published_time":"2026-07-10T08:36:22+00:00","article_modified_time":"2026-07-10T08:36:27+00:00","og_image":[{"width":1376,"height":768,"url":"https:\/\/smartfense.com\/file\/2026\/07\/hero-1-6.jpg","type":"image\/jpeg"}],"author":"Mauro S\u00e1nchez","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Mauro S\u00e1nchez","Est. reading time":"8 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/smartfense.com\/en\/blog\/automatic-sso-integration-end-to-end\/#article","isPartOf":{"@id":"https:\/\/smartfense.com\/en\/blog\/automatic-sso-integration-end-to-end\/"},"author":{"name":"Mauro S\u00e1nchez","@id":"https:\/\/smartfense.com\/en\/#\/schema\/person\/cd90acca0dbd51ffdec4d346f3cf90b2"},"headline":"Automatic SSO integration: how it works end to end","datePublished":"2026-07-10T08:36:22+00:00","dateModified":"2026-07-10T08:36:27+00:00","mainEntityOfPage":{"@id":"https:\/\/smartfense.com\/en\/blog\/automatic-sso-integration-end-to-end\/"},"wordCount":1596,"commentCount":0,"publisher":{"@id":"https:\/\/smartfense.com\/en\/#organization"},"image":{"@id":"https:\/\/smartfense.com\/en\/blog\/automatic-sso-integration-end-to-end\/#primaryimage"},"thumbnailUrl":"https:\/\/smartfense.com\/file\/2026\/07\/hero-1-6.jpg","keywords":["authentication security","integration","plataforma","user import","user management"],"articleSection":["Blog","Blog"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/smartfense.com\/en\/blog\/automatic-sso-integration-end-to-end\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/smartfense.com\/en\/blog\/automatic-sso-integration-end-to-end\/","url":"https:\/\/smartfense.com\/en\/blog\/automatic-sso-integration-end-to-end\/","name":"Automatic SSO integration end to end","isPartOf":{"@id":"https:\/\/smartfense.com\/en\/#website"},"primaryImageOfPage":{"@id":"https:\/\/smartfense.com\/en\/blog\/automatic-sso-integration-end-to-end\/#primaryimage"},"image":{"@id":"https:\/\/smartfense.com\/en\/blog\/automatic-sso-integration-end-to-end\/#primaryimage"},"thumbnailUrl":"https:\/\/smartfense.com\/file\/2026\/07\/hero-1-6.jpg","datePublished":"2026-07-10T08:36:22+00:00","dateModified":"2026-07-10T08:36:27+00:00","description":"How an automatic SSO integration works in a security awareness platform: the end-to-end SAML authentication flow, and how it differs from provisioning.","breadcrumb":{"@id":"https:\/\/smartfense.com\/en\/blog\/automatic-sso-integration-end-to-end\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/smartfense.com\/en\/blog\/automatic-sso-integration-end-to-end\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/smartfense.com\/en\/blog\/automatic-sso-integration-end-to-end\/#primaryimage","url":"https:\/\/smartfense.com\/file\/2026\/07\/hero-1-6.jpg","contentUrl":"https:\/\/smartfense.com\/file\/2026\/07\/hero-1-6.jpg","width":1376,"height":768,"caption":"Una \u00fanica puerta-torniquete de cristal en un lobby corporativo por la que fluye una corriente de profesionales hacia varios corredores luminosos, como met\u00e1fora de un solo acceso que abre muchos sistemas."},{"@type":"BreadcrumbList","@id":"https:\/\/smartfense.com\/en\/blog\/automatic-sso-integration-end-to-end\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Portada","item":"https:\/\/smartfense.com\/en\/"},{"@type":"ListItem","position":2,"name":"Automatic SSO integration: how it works end to end"}]},{"@type":"WebSite","@id":"https:\/\/smartfense.com\/en\/#website","url":"https:\/\/smartfense.com\/en\/","name":"SMARTFENSE - Concienciaci\u00f3n en Ciberseguridad","description":"","publisher":{"@id":"https:\/\/smartfense.com\/en\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/smartfense.com\/en\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/smartfense.com\/en\/#organization","name":"SMARTFENSE","url":"https:\/\/smartfense.com\/en\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/smartfense.com\/en\/#\/schema\/logo\/image\/","url":"https:\/\/smartfense.com\/file\/2023\/08\/logo-smartfense-240x40-1.png","contentUrl":"https:\/\/smartfense.com\/file\/2023\/08\/logo-smartfense-240x40-1.png","width":241,"height":40,"caption":"SMARTFENSE"},"image":{"@id":"https:\/\/smartfense.com\/en\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/smartfense.com\/en\/#\/schema\/person\/cd90acca0dbd51ffdec4d346f3cf90b2","name":"Mauro S\u00e1nchez","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/621a5d64e5ca57cf623fa5d310c5031d6b035d29d4b85e2976aa9d8cceba2373?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/621a5d64e5ca57cf623fa5d310c5031d6b035d29d4b85e2976aa9d8cceba2373?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/621a5d64e5ca57cf623fa5d310c5031d6b035d29d4b85e2976aa9d8cceba2373?s=96&d=mm&r=g","caption":"Mauro S\u00e1nchez"},"description":"CTO de SMARTFENSE, lidera los equipos de ingenier\u00eda y desarrollo. Especialista en materia de ciberseguridad e infraestructura, siendo el encargado de definir y concretar las integraciones y alianzas tecnol\u00f3gicas estrat\u00e9gicas de SMARTFENSE con diferentes soluciones. M\u00e1s de 20 a\u00f1os avalan su experiencia en la toma de decisi\u00f3n e implementaci\u00f3n de medidas de seguridad y tecnolog\u00eda.","url":"https:\/\/smartfense.com\/en\/author\/mauro-sanchez\/"}]}},"_links":{"self":[{"href":"https:\/\/smartfense.com\/en\/wp-json\/wp\/v2\/posts\/43387","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/smartfense.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/smartfense.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/smartfense.com\/en\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/smartfense.com\/en\/wp-json\/wp\/v2\/comments?post=43387"}],"version-history":[{"count":5,"href":"https:\/\/smartfense.com\/en\/wp-json\/wp\/v2\/posts\/43387\/revisions"}],"predecessor-version":[{"id":43414,"href":"https:\/\/smartfense.com\/en\/wp-json\/wp\/v2\/posts\/43387\/revisions\/43414"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/smartfense.com\/en\/wp-json\/wp\/v2\/media\/43384"}],"wp:attachment":[{"href":"https:\/\/smartfense.com\/en\/wp-json\/wp\/v2\/media?parent=43387"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/smartfense.com\/en\/wp-json\/wp\/v2\/categories?post=43387"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/smartfense.com\/en\/wp-json\/wp\/v2\/tags?post=43387"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}