Authentication services

Pega Platform provides a robust, customizable set of features for authenticating users. To override or extend the default authentication process, you create and configure an authentication service. To create an authentication service, you must have the pzCanCreateAuthService privilege.

Create an authentication service to configure Pega Platform with one of the following authentication methods:

  • SAML web single sign-on
  • OpenID Connect sign-on
  • Kerberos sign-on
  • A custom solution that uses none of the above, for example, using a Lightweight Directory Access Protocol (LDAP)-compliant directory server
Note: The default servlet, PRAuth, provides a unified authentication gateway so that you do not need to edit prweb.xml or restart the server for new authentication services.