https://live.paloaltonetworks.com/t5/general-topics/clientless-vpn-pass-creds-to-applications/m-p/147937#M49485 Hi TomaszLubas,<BR /><BR />You can possibly adopt SAML as the SSO method. It's universal on all platforms (unlike Kerberos, ldap). Palo Alto version 8.0 and above has SAML based authentication. You will need a SAML provider though.<BR /><BR />Regards,<BR />Anurag Thu, 16 Mar 2017 00:29:49 GMT ansharma 2017-03-16T00:29:49Z https://live.paloaltonetworks.com/t5/general-topics/clientless-vpn-pass-creds-to-applications/m-p/146834#M49273 <P>Hello,</P><P>&nbsp;</P><P>one of our customers want to use PA as SSO for their applications.</P><P>Have you any idea if it is possible ?</P><P>We can use Kerberos or LDAP for clients authentication to PA but what about pass it to the application ?</P> Thu, 09 Mar 2017 10:50:47 GMT https://live.paloaltonetworks.com/t5/general-topics/clientless-vpn-pass-creds-to-applications/m-p/146834#M49273 TomaszLubas 2017-03-09T10:50:47Z https://live.paloaltonetworks.com/t5/general-topics/clientless-vpn-pass-creds-to-applications/m-p/147937#M49485 Hi TomaszLubas,<BR /><BR />You can possibly adopt SAML as the SSO method. It's universal on all platforms (unlike Kerberos, ldap). Palo Alto version 8.0 and above has SAML based authentication. You will need a SAML provider though.<BR /><BR />Regards,<BR />Anurag Thu, 16 Mar 2017 00:29:49 GMT https://live.paloaltonetworks.com/t5/general-topics/clientless-vpn-pass-creds-to-applications/m-p/147937#M49485 ansharma 2017-03-16T00:29:49Z