Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.

Credential-less access for SSO enabled web applications

New Contributor II
New Contributor II
we have few questions related to Credential-less access method for SSO enabled web applications.
1. How can we effectively map azure ad accounts into the credential-less access method for an application that is already SSO-enabled via AzureAD? specifically, if we are utilizing a REST connection for this application (Generic vault) , what configuration options are available to facilitate this Azure AD account for credential-less method mapping process within the PAM config(bootstrap). 
2. Do we need to use the Azure AD connector for Azure SSO enabled web applications? for credential-less access?
3. Considering that we have already mapped the azure portal application for credential-less session using our Azure AD endpoint, are there provisions are best practices for utilizing another Azure AD endpoint for additional web applications (Azure SSO enabled) requiring similar credential-less access methods?

Saviynt Employee
Saviynt Employee

Hi @N598231 ,


Please find the below feature supported matrix documentation. Check the Federated access section for features supported for Azure AD.

Can you please elaborate on the third point of yours.