External Identity Providers Overview

GENESIS Security supports using external identity providers through OpenID Connect (OIDC) and SAML 2.0, which enables organizations to integrate their existing identity management solutions for secure, centralized authentication. With this integration, you can log into GENESIS using credentials from a third-party identity provider, such as Microsoft Entra ID (formerly Azure AD), Okta, or any other compatible provider that supports these protocols.

Once you configure logging into GENESIS through an external identity provider, the process is seamless and simple. Instead of entering your GENESIS-specific credentials, you are redirected to the login page of your external identity provider, such as Entra ID or Okta. For example, if your organization uses Entra ID, you enter your Entra ID credentials (username and password, possibly with an added multifactor authentication) on the familiar Microsoft login screen. Upon successful authentication, the identity provider generates a token (claim) that identifies the user and sends it back to GENESIS.

GENESIS validates the token and maps it to an internal GENESIS user that can either be defined in the GENESIS Security database or sourced from an on-premises Active Directory or Microsoft Entra ID. The system checks this user for any predefined permissions or group memberships and grants access accordingly.

It means that you have used your organization's standard login credentials to log into GENESIS with all your rights and restrictions as defined by the internal security configuration. With single sign-on (SSO), you do not need to remember a separate set of login details for the system.

GENESIS can also act as an OpenID Connect identity provider (OIDC IdP). In this mode, it serves as the authentication provider for in-house applications and third-party clients like Cortana, Alexa, or custom web applications. Learn more

This feature allows in-house and external applications to authenticate users against the GENESIS Security system, obtaining an OIDC token that grants access to secure data and operations within the GENESIS environment.