Single Sign-On and OAuth - Platform - BlueCat Gateway - 21.11.2

Gateway Administration Guide

Product name
BlueCat Gateway

BlueCat Gateway supports SAML 2.0 for web-based single sign-on (SSO) and OAuth 2.0 API authorization. Web-based SSO integration allows Gateway to be part of your organization's SSO environment for consolidated user authentication and management. OAuth provides an industry standard authorization mechanism, helping to secure access to the Address Manager API.

In the SSO environment, BlueCat Gateway can be configured as a Service Provider (SP) and the user's credentials are authenticated by the Identity Provider (IdP). BlueCat Gateway supports both SP-initiated SSO and IdP-inititated SSO. For more information on how SAML works with BlueCat Gateway, refer to Single Sign-On.

The OAuth API authorization allows users of BlueCat Gateway access to Address Manager's API endpoints with the Authorization Code Grant in the OAuth 2.0 specification. For more information on how OAuth works with BlueCat Gateway, refer to OAuth API Authorization.

Note: SSO for DNS Edge is not related to SSO for BlueCat Gateway. DNS Edge must be configured separately as a service provider on your IdP.