Identity federation allows one trusted identity system to support access or sign-in across another system or security boundary.
Identity federation is the trust arrangement that allows one identity system to support access or sign-in across another system or security boundary. In plain language, it lets a system rely on a trusted external identity source instead of requiring a completely separate local identity for every environment.
Identity federation matters because cloud access often spans multiple platforms, organizations, and services. Requiring entirely separate identity silos everywhere creates sprawl, weaker lifecycle control, and more opportunities for stale access.
It also matters because federated identity can support stronger governance when it is designed well. A central identity source can make authentication, revocation, and access review more consistent across many systems.
Identity federation appears in cloud-console access, SaaS sign-in, partner access, workforce identity, and multi-platform administration. Teams connect it to SAML, OpenID Connect, Single Sign-On, and Shared Responsibility Model because federation changes how access is governed across trust boundaries.
Security teams review federation carefully because the trust relationship can expand the impact of a compromised identity system if it is not protected well.
A company lets administrators use its central workforce identity platform to access a cloud provider console rather than maintaining separate cloud-only usernames and passwords for each administrator. That federation allows centralized authentication and access governance to influence cloud access directly.
Identity federation is not the same as Single Sign-On in every context, even though the two are closely related. Federation is the trust relationship between systems. SSO is the user-facing experience or architecture that often results.
It is also different from Workload Identity, which focuses on non-human services and workloads rather than user sign-in across trusted identity systems.