OneLogin

OneLogin is a cloud-based identity and access management (IAM) platform that provides single sign-on (SSO), multi-factor authentication (MFA), directory integration, and automated user provisioning and deprovisioning for enterprise organizations. As part of One Identity, OneLogin helps organizations secure access to applications and data while improving the user experience for employees, partners, and customers.

The SSO capability in OneLogin is the core of the platform, providing a unified portal where users can access all their authorized applications after a single authentication. OneLogin maintains a catalog of thousands of pre-configured application integrations using SAML, OIDC, and proprietary protocols, covering SaaS applications, on-premises systems, and custom internal applications. The catalog reduces the integration effort for new applications to minutes rather than hours.

OneLogin's SmartFactor Authentication is the adaptive MFA system that evaluates risk signals at login time and applies the appropriate level of additional authentication based on the assessed risk. Risk factors include the user's device (known vs. unknown), geographic location, network (corporate vs. public), time of access, and behavioral patterns. High-risk logins require additional verification, while trusted logins from expected contexts can proceed with minimal friction.

Directory integration in OneLogin connects to Active Directory, LDAP, Workday, Google Workspace, and other authoritative sources of user identity. Changes in the directory (new hires, role changes, departures) propagate to OneLogin and trigger automated provisioning and deprovisioning actions in connected applications. This lifecycle management ensures that employees always have the right access and that departing employees are promptly deprovisioned from all systems.

OneLogin Protect is the mobile authenticator app that provides push notification-based MFA with contextual approval, TOTP code generation, and biometric authentication, giving users a smooth MFA experience without requiring SMS codes.

Trusted Experience Platform (TXP) is OneLogin's approach to building user trust through consistent, branded experiences. Customizable login portals, password policies, and email communications ensure that the authentication experience aligns with the organization's brand identity.

OneLogin's Virtual LDAP feature makes the OneLogin directory available as an LDAP server, enabling legacy applications that only support LDAP authentication to participate in the OneLogin-managed identity ecosystem.

OneLogin integrates with SIEM platforms for security monitoring, with ITSM tools for automated access request workflows, and with HR systems for authoritative user lifecycle management, making it a well-integrated component of the enterprise security and IT operations stack.