Access Gateway is an on-premises solution designed to streamline user access to both cloud and on-premises applications, including legacy apps, from a single identity platform. It provides IT teams with the ability to securely manage access using existing directory credentials, such as Google Workspace or Microsoft Active Directory accounts, leveraging the SAML 2.0 authentication standard. When users access protected applications, they are redirected to the miniOrange Access Gateway server within the network, which acts as an identity provider (IdP). It authenticates users through the existing primary authentication system and prompts for multi-factor authentication before granting access. Access Gateway supports local Active Directory (AD) and OpenLDAP directories, as well as on-premises or cloud IdPs. It offers features like SSO for legacy apps with header/cookie authentication, support for multiple authentication methods, MFA for unauthenticated sites and URLs, and high availability with load balancing. The solution enables seamless and secure access to multiple enterprise apps from one central gateway without requiring any configuration changes to the source code or IT infrastructure. It acts as a central Identity Provider that can integrate with all On-Premise & Custom In-House Apps, providing secure and seamless access to enterprise resources.

Features:

• SSO for Legacy Apps with Header/Cookie Auth: Legacy applications can be secured using SSO with header or cookie-based authentication, ensuring seamless access to multiple systems after a single login.
• Support Multiple Authentication Method: Supports methods like OTP, Google Authenticator, Hardware Token, and Header-Based Authentication, allowing flexible and secure integration with diverse systems.
• MFA for Unauthenticated Sites and URLs: Multi-factor authentication (MFA) can be enforced even for non-authenticated sites or specific backend URLs, adding an extra layer of security to critical resources.
• High Availability and Load Balancing: Ensures continuous service by distributing traffic across multiple gateways, preventing overloads, optimizing performance, and providing failover support.