Single Sign-On (SSO) for All Apps

Secure, frictionless access to any resource, including web and on-premises applications, from anywhere.

One Identity for Secure Application Access

The average employee uses dozens of applications. Provide them with convenient but secure access to all their web and on-premises apps with a single set of credentials.

Connectors for Popular Apps

Provide access to apps via SAML 2.0, SCIM, and LDAP, including a library of hundreds of pre-configured connectors.

App Identity Management

Create and manage user accounts in applications directly from JumpCloud with SAML JIT and SCIM, plus pass groups, roles, and permissions to those apps.

MFA at Login

Layer multi-factor authentication (MFA) for SP- and IdP-initiated authentication to SAML-based apps and the JumpCloud User Portal.

Easy Life Cycle Management for Business-Critical Apps

One Dashboard, Unlimited Apps

Set up users to access all their business-critical web apps from their JumpCloud User Portal. SSO from JumpCloud also includes apps that authenticate with LDAP, from IT services (e.g., Jenkins, OpenVPN, or Airwatch) to ticketing and control systems (e.g., Atlassian Jira) to on-prem attached storage systems (e.g., Synology or QNAP).

Simple and Scalable User Management

Create groups based on employee department or job role, then associate those groups to applications to restrict access and provide appropriate authorizations and permissions. Save time onboarding by adding a new user to a group and automatically granting them access to associated apps. From a single console, manage access, user attributes, account provisioning, and deactivation with a growing list of SAML and SCIM connectors.

One Identity for All Resources

Extend user identities beyond applications. Give users a single, secure set of credentials to access virtually all their IT resources, including macOS, Windows, and Linux devices, cloud infrastructure, files, and networks. This simplifies the login process for users and eliminates identity sprawl in your environment.

Built-in Security

Protect the JumpCloud User Portal with multi-factor authentication (MFA), including Google Authenticator, Duo, FreeOTP, Microsoft Authenticator, Yubico, and more. Layer additional security with Conditional Access policies to grant or restrict access depending on whether users work from trusted networks and devices.

Case Studies

Sapling

Eliminate Point Solutions & Streamline IT

Read The Case Study

Augeo Fi

Unifying Systems, Apps, OpenVPN, and WiFi

Read The Case Study

Principle Networks

Centralized Auth for an All-Remote Workforce

Read The Case Study

SSO Frequently Asked Questions

Get answers to common questions about JumpCloud's SSO.

Talk to an Expert
How is JumpCloud Single Sign On (SSO) different from other service providers?

JumpCloud’s SSO goes beyond application access to provide a single identity that can access any IT resource, from applications to devices, networks and more. Backed by a robust Directory Platform, you can onboard, offboard, and manage the lifecycle of every user with a single set of credentials. With one identity per user, you can easily provision and deprovision user access to devices (MacOS, Windows, and Linux), on-premise applications, networks and VPN, and servers from a single, secure console.

How can JumpCloud simplify onboarding and offboarding application access?

JumpCloud uses User Groups to centralize access to applications. You can create User Groups for teams (for example, Product Management) and assign application access at the group level. If you add a new user to this group, then they are immediately granted access to the same applications as all other users in the group. Similarly, if a user leaves the company or is no longer part of this group, then removing them from the group is all it takes and their access to those applications are revoked.

How does JumpCloud ensure secure user access to their applications?

Through JumpCloud Conditional Access policies, admins can add an extra layer of security on top of the User Portal and applications. With these policies, users may only have access to company resources from trusted devices, networks, and/or locations as determined by specific, customizable conditions, or require the use of multi-factor authentication (MFA) for entry via unknown sources. Admins can apply Conditional Access policies by User Group(s) or for all users.

Conditional Access policies are a necessary step to secure access, as not all applications may require enhanced security themselves. For example, a User Group of engineers need access to both AWS SSO and Zoom. There is sensitive data within AWS that needs to be protected from unknown devices and networks, but Zoom is relatively benign. With a few clicks, an admin could create a Conditional Access Policy to require MFA for all access requests from untrusted devices and networks to AWS, but engineers in the Engineer User Group will still be able to access Zoom from all devices.

Can JumpCloud help my company manage devices?

Yes! In addition to provisioning and deprovisioning application access, admins can also use an employee’s credentials to provision or deprovision access to their MacOS, Windows, or Linux device(s).

Where can I learn more about JumpCloud’s SSO solution?

We recommend that you Request a Demo from our sales team.

Can I test JumpCloud for free?

Yes! Set up a JumpCloud Free account in a few fast steps, and evaluate the entire platform with up to 10 users and 10 devices for free. You’ll also get free 24×7 chat support for your first 10 days’ evaluating. We won’t ask for credit card information until you’re ready to scale.

Try JumpCloud for Free

Fully evaluate JumpCloud for free. Test at home, with a small group, or in production.

  • Our full platform for 10 users and 10 devices
  • Includes full platform functionality
  • 10 days of Premium 24x7 in-app live chat support
Create Your Free Account Watch a Product Demo