Single Sign-On (SSO) simplifies the login process by allowing users to access multiple applications with a single set of credentials. For platforms like JollyDeck, SSO means easier access for your team and stronger security for your organisation.<\/p>\n\n\n\n
Below, we answer the most common questions about SSO on JollyDeck, including the differences between SAML and OAuth, their pros and cons, and how to get started.<\/p>\n\n\n\n
JollyDeck supports several authentication methods:<\/strong><\/p>\n\n\n\n For the latest updates and configuration details, contact JollyDeck support.<\/p>\n\n\n\n SAML (Security Assertion Markup Language)<\/strong> is an older Single Sign-On standard that lets an Identity Provider (IdP) verify a user\u2019s identity for multiple services (Service Providers) through one login. SAML messages use XML, which was the norm for enterprise identity systems. SAML enables users to log in once and access multiple applications securely.<\/p>\n\n\n\n OAuth<\/strong> is a newer framework focused on authorization. It grants third-party applications limited access to resources on a user\u2019s behalf. Instead of sharing passwords, OAuth uses temporary tokens, and when combined with OpenID Connect<\/strong> (which adds user identity on top), it can serve as a full single sign-on solution.<\/p>\n\n\n\n Pros:<\/strong><\/p>\n\n\n\n Cons:<\/strong><\/p>\n\n\n\n Pros:<\/strong><\/p>\n\n\n\n Cons:<\/strong><\/p>\n\n\n\n While both protocols offer secure and widely adopted SSO solutions, the best choice depends on your organisation’s identity infrastructure and use cases. OAuth 2.0 with OpenID Connect typically suits modern, cloud-native environments where speed, flexibility, and interoperability are paramount. SAML, on the other hand, remains a robust option for organisations operating traditional enterprise systems with established identity management tools.<\/p>\n\n\n\n At JollyDeck, we support both protocols and tailor integration recommendations based on your technical setup and security posture. Whether you\u2019re deploying in a modern SaaS environment or connecting to on-premise directories, we\u2019ll help you implement the most effective and seamless SSO experience.<\/p>\n\n\n\n JollyDeck supports a range of login methods to suit diverse organisational setups. While both SAML and OAuth are available, we typically recommend OAuth 2.0 with OpenID Connect<\/strong> for most organisations.<\/p>\n\n\n\n OAuth offers:<\/p>\n\n\n\n However, if your organisation has existing SAML infrastructure – such as Active Directory Federation Services (ADFS) or other XML-based systems – JollyDeck also provides robust support for SAML-based SSO.<\/p>\n\n\n\n Whatever your choice, our team ensures secure implementation and can guide you through best practices for protecting user credentials and maintaining compliance.<\/p>\n\n\n\n Use SAML<\/strong> if:<\/p>\n\n\n\n Use OAuth 2.0 with OpenID Connect<\/strong> if:<\/p>\n\n\n\n For most cloud-first organisations and modern technology environments, OAuth (via OpenID Connect) typically provides the best balance<\/strong> of security, usability, and ease of integration.<\/p>\n\n\n\n Still not sure? Our support team is ready to assess your setup and recommend the most effective integration path.<\/p>\n\n\n\n SAML Setup<\/strong><\/p>\n\n\n\n LDAP \/ Active Directory Setup<\/strong><\/p>\n\n\n\n Both SAML and OAuth can be implemented securely when best practices are followed:<\/p>\n\n\n\n Our team helps you implement each protocol in a way that aligns with your organisation\u2019s security and compliance requirements.<\/p>\n\n\n\n Always follow best practices for both protocols to protect user data.<\/p>\n\n\n\n If your organisation needs a hybrid approach, custom authentication flow, or integration with a niche identity provider, contact our support team<\/a>. We\u2019ll work with you to design a secure and efficient solution that fits your specific needs.<\/p>\n\n\n\n JollyDeck supports a full range of authentication options for organisations of all sizes and technical setups. Whether you’re using OAuth, SAML, LDAP, or simple login credentials, our goal is to make access easy, secure, and scalable. If you’re unsure which protocol is best for your organisation, reach out and we’ll help you choose the right path.<\/p>\n\n\n\n If you’re unsure which approach best fits your setup, our team is available to advise and support your integration process.<\/p>\n\n\n\n <\/p>\n","protected":false},"excerpt":{"rendered":" Single Sign-On (SSO) simplifies the login process by allowing users to access multiple applications with a single set of credentials. For platforms like JollyDeck, SSO means easier access for your team and stronger security for your organisation. Below, we answer … Continue reading \n
What is SAML?<\/strong><\/h2>\n\n\n\n
What is OAuth?<\/strong><\/h2>\n\n\n\n
What\u2019s the difference between SAML and OAuth?<\/strong><\/h2>\n\n\n\n
Feature\/Aspect<\/strong><\/td> SAML<\/strong><\/td> OAuth<\/strong><\/td><\/tr> Core function<\/strong><\/td> User authentication (verifying identity) and SSO between services.<\/td> Delegated authorization (access control); with OIDC, it also handles user authentication for SSO.<\/td><\/tr> Data format<\/strong><\/td> XML-based messages (SAML assertions)<\/td> JSON (typically uses JWT \u2013 JSON Web Tokens)<\/td><\/tr> Security<\/strong><\/td> Employs XML digital signatures & encryption of assertions (high security)<\/td> Depends on secure tokens over HTTPS (TLS); trust is placed in token secrecy and transport security.<\/td><\/tr> Complexity<\/strong><\/td> Complex to implement (involves XML, multiple configurations; designed with older systems in mind)<\/td> Lightweight and easier to implement (JSON\/REST design is developer-friendly)<\/td><\/tr> Best suited for<\/strong><\/td> Large enterprises or government systems with established identity federations (legacy IdPs).<\/td> Cloud-first applications, mobile or single-page apps, and APIs \u2013 basically any modern platform where flexibility and speed matter.<\/td><\/tr> Ecosystem compatibility<\/strong><\/td> Built into many legacy enterprise ecosystems (works with older standard enterprise SSO frameworks)<\/td> Widely adopted in cloud and SaaS ecosystems; standard for integrating with newer identity providers and services.<\/td><\/tr> Performance<\/strong><\/td> Relatively heavy: verbose XML can make transactions slower and consume more resources<\/td> High-performance: lightweight tokens pass minimal data, making it quicker<\/td><\/tr> Authentication<\/strong><\/td> Yes (proves identity)<\/td> Only with OpenID Connect extension<\/td><\/tr> Authorization<\/strong><\/td> Yes (via attributes\/roles)<\/td> Yes (main purpose)<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n What are the pros and cons of SAML vs. OAuth?<\/strong><\/h2>\n\n\n\n
SAML<\/strong><\/h3>\n\n\n\n
\n
\n
OAuth (with OpenID Connect)<\/strong><\/h3>\n\n\n\n
\n
\n
Authentication and login options<\/strong><\/h2>\n\n\n\n
\n
When should I use SAML vs. OAuth with JollyDeck?<\/strong><\/h2>\n\n\n\n
\n
\n
How do I set up SSO on JollyDeck?<\/strong><\/h2>\n\n\n\n
\n
OAuth \/ OpenID Connect Setup<\/strong><\/h3>\n\n\n\n
\n
\n
Are there any security considerations?<\/strong><\/h2>\n\n\n\n
\n
What if I need more flexibility or have unique requirements?<\/strong><\/h2>\n\n\n\n
Conclusion<\/strong><\/h2>\n\n\n\n