Inbound and Outbound Single Sign-On

Inbound Single Sign-On

Inbound SSO allows users to access NetSuite using credentials from an external identity provider (IdP). In this case, NetSuite is the service provider (SP), and the authentication is managed by the external IdP.

How it Works:

  1. User Attempts to Access NetSuite: The user tries to access their NetSuite account.
  2. Redirect to Identity Provider (IdP): NetSuite redirects the user to the external IdP for authentication.
  3. User Authenticates with IdP: The user logs in using their credentials at the IdP.
  4. IdP Sends Authentication Response: Upon successful authentication, the IdP sends a SAML or OAuth response back to NetSuite, confirming the user’s identity.
  5. NetSuite Grants Access: NetSuite validates the authentication response and grants the user access to their NetSuite account.

Outbound Single Sign-On

Outbound SSO allows users who are authenticated in NetSuite to access other external applications without needing to re-enter their credentials. In this case, NetSuite acts as the identity provider (IdP), and the external application is the service provider (SP).

How it Works:

  1. User Authenticates with NetSuite: The user logs into NetSuite using their NetSuite credentials.
  2. User Attempts to Access External Application: From within NetSuite, the user attempts to access an integrated external application.
  3. NetSuite Generates SSO Token: NetSuite generates a SAML or OAuth token containing the user’s authentication information.
  4. Token Sent to External Application: NetSuite sends the SSO token to the external application.
  5. External Application Grants Access: The external application validates the token and grants the user access without requiring additional login.

Leave a comment

Your email address will not be published. Required fields are marked *