At IONOS Cloud, we are committed to continuously improving our services to enhance your experience and safeguard your data. We are pleased to announce that on November 11, 2024, we implemented significant updates to our Identity and Access Management (IAM) Single Sign-On (SSO) login process.
IAM SSO is a system that makes logging into multiple applications much easier and safer by allowing you to use one set of credentials. It reduces the hassle of remembering multiple passwords for different services.
The updates are designed to increase security protocols to protect user data and streamline access. They will help ensure that IONOS Cloud continues to provide a secure, reliable, user-friendly platform and an improved login interface with faster response times.
You will notice the changes when you log in to the on their respective dates:
Easy Login and Improved User Experience: SSO lets you access many apps with one login, reducing the burden of remembering and entering multiple passwords. Instead, it allows access to multiple accounts and products across the IONOS Cloud with a single password.
Improved Security: Fewer passwords mean less chance of weak or reused passwords. Users are more likely to use strong passwords with SSO. Additionally, SSO systems often support:
Multi-Factor Authentication (MFA) tokens add an extra layer of security by requiring a second form of verification, such as a code sent to a mobile device.
Authentication Tokens are used within SSO to maintain user sessions securely and facilitate access to various services after the initial login.
Increased Productivity and User Satisfaction: Saves time by not having to log in multiple times. A straightforward login process makes users happier and more likely to use applications effectively.
Lower IT Costs: SSO reduces the number of IT issues related to passwords, such as reset requests and account lockouts.
Easier Compliance and Auditing: Centralized access management helps meet regulatory requirements and makes audits easier. SSO helps to track who accessed what and stay compliant with regulations.
Scalable: SSO can grow with the organization, handling new users and applications without extra complexity.
Centralized Control: Administrators can manage access more easily from one place, simplifying the enforcement of security rules.
FAQs
Here are a few FAQs to help you navigate through the changes:
General
What is IAM?
Identity and Access Management (IAM) systems include a Single Sign-On (SSO) feature that allows you to authenticate yourself once and gain access to multiple services without the need to log in separately to each one.
What is SSO and how does it work?
SSO is a vital part of IAM systems, making logging into multiple applications easier. With SSO, you only need to log in once to access all your services, which improves both ease of use and security by cutting down the number of required passwords. Token-based authentication can work with SSO, allowing you to access multiple platforms with a single token. For more information, see Token Management.
Will I need to remember multiple passwords now?
SSO simplifies the login process by allowing you to log in just once to access all your services. It enhances ease of use and security by reducing the number of passwords you need to manage. As a result, you won’t have to remember multiple passwords.
Should I expect a downtime during the update?
This update will not cause any downtime. The login changes will take effect the next time you log in after November 11, 2024.
Authentication and Troubleshooting
What is changing and how do I login with IAM SSO?
Starting November 11, 2024, due to the update implemented to the IAM SSO login process, the new login screen will require you to validate yourself in the following screens:
1. The first one requires your Email Address and Password.
2. The second screen requests the Time-based one-time password (TOTP) from your authenticator app if you have configured 2-Factor Authentication.
We recommend proceeding with your authentication as usual. This new login approach improves security by controlling the authentication and authorization of your accounts.
What happens if I forget my SSO password? Can I use my existing credentials to log in?
If you forget your Single Sign-On (SSO) password, you cannot log in using your existing credentials, as the SSO system requires the SSO password for authentication. However, you can reset your IONOS account password to be able to access your account.
Will I remain logged in to other applications when I log out of one?
Logging out of one application does not sign you out of others. You will still remain logged in to your other applications.
How will these changes impact you?
The upcoming change will not impact your data and no action is required at your end.
However, when you log in to the DCD after November 11, 2024, you will see the new SSO login screen.
The IAM SSO makes it easier for administrators to set up and manage users, assign roles, and authorize privileges across IONOS Cloud accounts.
You can also contact IONOS Cloud Support for any assistance. Our experts are available 24/7 to answer your questions or concerns.
What should I do if I cannot log in with SSO or receive an error when I try to log in?
Ensure that you are using the correct username and password associated with your SSO account.
Try clearing your browser's cache and cookies, as outdated or corrupted data can cause login issues.
Try logging in from a different browser or device to see if that resolves the problem.
Ensure that you have a stable internet connection.
If you suspect your password may be incorrect, try resetting it.
How can I ensure I'm logged in securely?
IONOS Cloud uses IAM with SSO feature for a stronger authentication and authorization. IAM is the only system that has access to your login credentials; hence they are safe on IONOS Cloud. IAM systems utilize OpenID Connect (OIDC), an authentication layer on top of OAuth 2.0, allowing IAM to verify user identities. When you or your users attempt to access a resource, the application redirects to IAM for authentication.
IAM enables SSO capabilities. Once IAM completes authentication, you can access multiple applications without logging in separately for each one.
We also recommend that you enable 2-Factor Authentication on your account for a second form of verification, such as a code sent to your mobile device or an authentication app, in addition to your password.
In addition, here are some best practices that you can follow for a secure login process:
Create complex passwords with a combination of upper and lower case letters, numbers, and special characters.
Always ensure that the website you are logging into uses HTTPS, which secures the data transmitted between your browser and the site.
Be cautious of emails or messages asking for your login information or directing you to log in via a link. Always navigate to the official site directly through your browser.
Review and adjust your account’s security settings and privacy settings according to your needs. Some accounts might allow you to review recognized devices.
Is my data more secure with IAM and SSO?
Implementing IAM and SSO can significantly improve data security. IAM systems coupled with OIDC and SSO provide better control over user access, reduce risks associated with weak passwords, and simplify the management of user identities. It is important to emphasize that only the IAM system can access your login credentials irrespective of the number of services that are connected to your SSO. Additionally, we recommend that you regularly review and update security practices and policies to keep up with evolving threats.
What measures are in place to prevent unauthorized access?
If you are the administrator, always ensure that you login with your iam@ionos.com username.
Can I use SSO on my mobile device?
Yes, you can use SSO on your mobile device.
What is the importance of this new update?
The enhancements are the result of our continuous efforts to provide top-notch security and a seamless user experience. These changes will help keep our infrastructure aligned with the latest industry standards and best practices.
Additionally, it significantly improves account security and enhances the overall user experience, ensuring compliance with the most current security standards and industry best practices.
