What is an Identity Provider?
An Identity Provider (IdP) is a centralized service that manages the digital identities of individuals and enables login to various applications — including Falcon. Once Falcon is connected to an IdP, access can be granted through Single Sign-On (SSO).
➡️ Examples of common Identity Providers:
Microsoft Entra ID (formerly Azure AD)
Okta
Google Workspace Identity
Auth0, JumpCloud, Ping Identity, and others
How does an Identity Provider work with Falcon?
The Identity Provider handles authentication, confirming:
Yes, this person is who they claim to be — and is authorized to access Falcon.
Falcon itself does not store login credentials, but relies on the IdP's confirmation via the OpenID Connect (OIDC) protocol.
If authentication is successful, Falcon receives the information:
Acces granted - login successful
When is an Identity Provider needed?
An Identity Provider is required when:
SSO is to be activated for a Falcon hub.
User access needs to be centrally managed (e.g., by the IT department).
How is an Identity Provider set up (overview)?
The setup is typically carried out by your IT department or in collaboration with Nordantech Support. The basic steps are:
Create an application in the IdP portal (e.g., Microsoft Entra or Okta)
Enter the required parameters in Falcon:
OIDC metadata URL
Client ID
Client Secret
Activate the SSO function in the Falcon Hub