Use BankID, Freja, SITHS & EFOS with ADFS without complexity
Integrity ♥︎ ADFS
Many organizations use ADFS as the basis for identity and access. At the same time, there is a need to support multiple e-identifications – such as BankID, Freja eID, SITHS and EFOS – for different user groups, services and regulatory requirements.
Integrity is the product that solves this.
It makes it possible to use multiple eIDs together with ADFS in a secure, controlled and future-proof way – without building special solutions or replacing existing infrastructure.
The challenge with ADFS and multiple eIDs
ADFS is a stable, proven and often business-critical platform for identity and access management in many organizations. At the same time, it is not designed to smoothly manage multiple e-identifications in parallel. When the business needs to support different types of eID, different levels of trust depending on the service, as well as both national and sector-specific solutions, technical and organizational challenges quickly arise. Add to this changing regulations and increased demands on security and traceability.
In practice, this often leads to ADFS being integrated directly with each individual eID provider. This type of solution quickly becomes difficult to maintain, costly to develop further and sensitive to changes. The result is an identity architecture with high complexity, increased administrative burden and limited flexibility when new requirements or eIDs need to be introduced.
Integrity as an eID layer on top of ADFS
Integrity solves these challenges by acting as a federated eID and authentication layer on top of ADFS. ADFS continues to be the organization's central identity provider and policy engine, while Integrity takes responsibility for the integration with external eIDs and the logic required to handle multiple authentication methods in a unified manner. This creates a clear division of responsibility and reduces the load on the ADFS environment.
With Integrity, different user groups can be authenticated with the eID that is most appropriate for each situation. Citizens can log in with BankID, healthcare employees can use SITHS, external users can be authenticated with Freja eID, and companies or organizations can be identified via EFOS. Everything is done through a single integration with ADFS, which simplifies the architecture and makes the solution easier to manage and further develop over time.
A secure and future-proof identity solution
With Integrity, organizations have the opportunity to use multiple e-identifications in parallel, without having to replace ADFS or lock themselves into specific providers. The solution enables flexible control of authentication based on user type, service, risk level and applicable regulations, while trust levels, attributes and consent are managed centrally and consistently. This ensures that the right level of security is used in every situation.
The clear connection between eID, user and authentication session creates full traceability and strong support for auditing, incident management and compliance. This makes Integrity particularly well suited for authorities, regions, municipalities and other regulated businesses that need to combine SITHS and EFOS with commercial eIDs.
