Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Authentication Methods Overview

Juniper Apstra Cloud Services provides different authentication methods to authenticate users.

You can use one of the following authentication methods to log in to the application GUI.

  • Juniper Apstra Cloud Services account—Users can create a Juniper Apstra Cloud Services account to access the application GUI.

  • Social Sign-In—All users can enable Google social media sign-in (or single sign-on) on their user account page.

  • Single Sign-On (SSO)—Super User can configure third-party Identity Providers (IdP) to authenticate users in the organization.

While users have the necessary permission to configure and use their accounts to log in, administrators can configure Single Sign-On for users in the organization.

Super Users can create and manage users in an organization. User management includes inviting users to join an organization and revoking users' access to the organization.

You can use Google as an authentication provider to sign in to the application. Google sign-in uses OpenID Connect (OIDC) to authenticate users by verifying their Google account credentials. As an alternative, superusers can configure IdP in the Organization Settings page and map the default roles to the IdP profiles. Secure Assertion Markup Language (SAML 2.0) is supported for SSO authentication using third-party IdPs. The IdP asserts a user's identity and allows the user to access the Web GUI based on the user's role.

Benefits of Single Sign-On

  • Users can use a single account to log in to multiple platforms and applications.

  • SSO simplifies password management for users and administrators through centralized authentication by IdP.