With OneIdP, our vision has always been simple: to make identity the backbone of unified management. Over the last few months, we’ve expanded its capabilities to close gaps, simplify admin workflows, and bring identity, devices, and apps even closer together. The latest updates build on this foundation, introducing enhancements that are not just new features, but answers to the real challenges IT teams face every day.
Introducing Extended Access Policies (XAP)
Traditional SSO stops at identity: if the credentials check out, access is granted. Extended Access Policies change that equation. Every login is evaluated not only by who the user is but also by how, where, and from what environment the access attempt originates. Compliance signals from the device, its location, reported IP, and application posture are all verified in real time. This authentication adapts to context, closes blind spots, and ensures access is both seamless and uncompromisingly secure.
That’s why we are excited to announce Extended Access Policies (XAP) with OneIdP.
This release strengthens the convergence of identity and compliance.
With Extended Access Policies, IT teams can now enforce access conditions not just by user credentials, but also by:
- Device compliance signals from Veltar
- Device location
- Reported IP address
- Installation status of required applications
As we strengthened controls with XAP, we also saw an opportunity on the other side of the spectrum, where trust is already assured. Managed devices that are verified and continuously monitored by OneIdP do not need repetitive password prompts slowing users down.
Introducing Skip Password on Managed Devices
Passwords remain a constant source of friction in enterprise workflows. They slow users down, introduce vulnerabilities, and too often stand in the way of productivity. But on trusted, managed devices, asking users to repeatedly type their credentials doesn’t add security, and it also adds unnecessary steps, slowing down your power users.
That’s why we’re introducing Skip Password on Managed Devices as part of OneIdP’s SSO configuration.
With this update, your users can now sign in to SSO applications directly on their managed devices without entering a password. The security posture remains intact, since sign-ins are still bound to the right user, on the right device.
With this feature, you get:
- Streamlined experience for your users: Employees access their apps faster, without repeated password prompts.
- Security by default: Authentication ties directly to managed device trust, eliminating spoofing or credential misuse.
- Admin-driven authentication: IT teams control the authentication via OneIdP, enabling it only when appropriate, maintaining security.
Skip Password on Managed Devices addresses the usability gap where repeated credential prompts added little value on already trusted devices. By streamlining sign-ins, we’ve reduced friction without compromising security.
The next step was ensuring IT teams don’t lose sight of what’s happening in the background.
Introducing SSO Application Access Logs
OneIdP now provides detailed access logs for all SSO-enabled applications. IT admins can track every login attempt across managed and unmanaged devices, giving them deeper insights and reporting, streamlining audits.
Get started with the new OneIdP updates
Extended Access Policies, Skip Password on Managed Devices, and detailed SSO Application Access Logs are all built to solve the everyday challenges IT teams face, balancing stronger security with a seamless user experience. These updates mark another step in making identity the foundation of unified management with OneIdP, where security and usability reinforce each other.
We encourage you to explore these capabilities, roll them out in your environment, and share your feedback. Your input not only helps us refine OneIdP further but also guides us in building the next set of features that matter most to IT and security teams like yours.
