Identity Provider (IdP)

Pointsharp Identity Provider is a core part of our Access Management offering. It makes it easy to centralize management of digital identities, access, and authentication in one place, as well as providing a powerful SSO solution together with our other products.

What’s new in Pointsharp IdP

The latest version of Pointsharp IdP introduces enhanced integration with Microsoft Entra ID, and expanded SAML protocol support. This allows authorization policies to be applied consistently across relying parties, reduce the need for manual identity configuration, and improve the reliability of user identity assertions during authentication and authorization flows.

Integration with Microsoft Entra ID

Deep alignment with Entra ID for unified hybrid identity.

External Authentication Methods (EAM) — Employ Pointsharp authentication factors within Entra ID and reference them in Conditional Access for stronger, policy driven MFA.
Improved support for SAML federated tenants — Streamlined federation configuration and identifier handling to enhance reliability and traceability when Entra ID delegates to the IdP.

Contextual identity selection

Enables an authenticated user to choose the identity context under which to proceed, for example, their primary account or an operational role such as officer on duty or customer service. This removes the need for shared functional credentials, supports least privilege access, and strengthens auditability.

SAML based group authorization

Centralizes access decisions in the IdP by evaluating group membership, mapping to application roles, and issuing precise assertions. When access is denied, users receive a clear, customizable message with guided remediation. See Group based authorization.

Authentication context class reference (ACR)

Allows administrators to specify and assert required authentication classes in SAML so applications can verify that each session meets defined assurance levels. See Authentication context class reference.