Single Sign-On (SSO) Overview
Method Platform leverages standard industry authentication technologies to provide secure and flexible Single Sign-On (SSO) capabilities for your organization. Our authentication system is built on proven protocols that enable seamless integration with your existing identity infrastructure.
Supported Authentication Protocols
Method Platform supports identity providers that implement the following industry-standard protocols:
OpenID Connect (OIDC)
OpenID Connect is a modern authentication layer built on top of OAuth 2.0. It provides a secure and standardized way to verify user identities and obtain basic profile information. OIDC is widely adopted and supported by most modern identity providers.
Security Assertion Markup Language (SAML)
SAML is a mature, XML-based authentication protocol that enables secure exchange of authentication and authorization data between identity providers and service providers. SAML 2.0 remains widely used in enterprise environments.
Identity Provider Integration
Method Platform’s authentication service is built on Keycloak, an enterprise-grade identity and access management solution. This architecture allows us to support a wide range of identity providers that implement OIDC or SAML protocols.
Verified Identity Providers
We provide detailed integration guides for the following identity providers:
- Microsoft Entra ID - Formerly known as Azure Active Directory, Microsoft’s cloud-based identity and access management service
- Okta - Leading independent identity and access management provider
Other Identity Providers
While we provide specific guides for Entra ID and Okta, Method Platform can work with any identity provider that supports OIDC or SAML 2.0. This includes but is not limited to:
- Google Workspace
- OneLogin
- Auth0
- Ping Identity
- KeyCloak
- Any custom identity provider implementing OIDC or SAML 2.0
Custom Identity Provider Integration
If you’re using an identity provider not listed above, please contact your Method Mission Ops team for assistance with the integration process.
Authentication Architecture
Method Platform uses a centralized authentication architecture:
- Identity Provider (IdP) - Your organization’s identity management system that stores user credentials and profile information
- Keycloak - Method’s authentication service that acts as an identity broker, facilitating communication between your IdP and the Method Platform
- Method Platform - The application that users access after successful authentication
This broker pattern allows Method Platform to support multiple authentication protocols and identity providers without requiring changes to the core platform.
Getting Started
To configure SSO for your Method Platform installation:
- Choose your identity provider
- Follow the appropriate integration guide:
- Work with your Method Mission Ops team to complete the integration
- Test the login flow with your users
Security Considerations
Method Platform’s SSO implementation follows security best practices:
- Secure Token Exchange - All authentication tokens are exchanged over encrypted HTTPS connections
- Client Secret Protection - Client secrets and sensitive configuration are encrypted at rest
- Session Management - Configurable session timeouts and token expiration
- Multi-Factor Authentication (MFA) - Supported when configured at the identity provider level
Always share client secrets and other sensitive authentication information through secure channels. Never include them in emails or unencrypted messages.
Need Help?
If you need assistance configuring SSO for Method Platform:
