What is AZOnePass?
AZOnePass is the name AstraZeneca has given to the access, encryption and management of the user credentials required when a Healthcare Professional logs into an AstraZeneca digital asset.
AZOnePass facilitates Single Sign-On (SSO) technology allowing for cross browsing of AstraZeneca websites and applications without having to log into these systems individually. All registered AZOnePass Healthcare Professionals can access any other AZOnePass supported applications with a single email address and password.
Depending on whether a particular AstraZeneca region/market is using AZOnePass Single Sign-On (SSO) on its website or application, AZOnePass can function as:
- The safe and secure management of user credentials for a single website/application where users can login only to that website/application.
- The safe and secure management of user credentials for multiple websites that are AZOnePass affiliated allowing users to login once and gain access to multiple website/applications.
All AZ Engage users (regardless of region or market) are required to please register for AZOnePass by validating their current user information and login credentials.
Countries and applications using AZOnePass:
South Africa – AZ Engage, AZ Brands
Algeria – AZ Engage only
Egypt – AZ Engage only
Ghana – AZ Engage only
Indonesia – AZ Engage only
Jordan – AZ Engage only
Kenya – AZ Engage only
Morocco – AZ Engage only
Tunisia – AZ Engage only
What is single sign-on (SSO)?
Single sign-on (SSO) is a session and user authentication service that permits a user of an application or website to use one set of login credentials (e.g. an email address and password) to access multiple applications.
With SSO, a user only has to enter their login credentials once, that then allows access across multiple applications, provided they are part of the SSO associated websites/applications.
How single sign-on works
Single sign-on is a federated identity management (FIM) arrangement, and the use of such a system is sometimes called identity federation. OAuth, which stands for Open Authorization is the framework that enables an end user’s account information to be used by third-party services, without exposing the user’s password or other sensitive information.
OAuth acts as an intermediary on behalf of the end user by providing the service with an access token that authorizes specific account information to be shared. When a user attempts to access a website or application from the service provider, the service provider will send a request to the identity provider for authentication. The service provider will then verify the authentication and log the user in.
How does an SSO login work?
Whenever a user signs in to an SSO service, the service creates an authentication token that remembers that the user is verified. An authentication token is a piece of digital information stored either in the user’s browser or within the SSO service’s servers, like a temporary ID card issued to the user. Any application the user accesses will check with the SSO service. The SSO service passes the user’s authentication token to the application and the user is allowed in. If, however, the user has not yet signed in, they will be prompted to do so through the SSO service.
An SSO service does not necessarily remember who a user is, since it does not store user identities.
What is the benefit of single sign-on (SSO)?
With SSO end-users time and efforts get minimized as they don’t need to constantly sign in and out separately into the multiple applications. Single Sign-On (SSO) helps users and organizations with the challenge of maintaining the different credentials for different applications separately which streamlines the process of signing on without the need to re-enter the password.
SSO is one of the pivotal aspects for many of the Identity and Access management (IAM) and cloud security control solutions. Single Sign-On (SSO) helps in improving productivity, management, and security reducing the risk of lost, weak, or forgotten passwords.