With the proliferation of public cloud services combined with the rise of IoT and the increasing uptake of as-a-Service offerings, many organisations are looking at SaaS as a way to extract more value from existing intellectual property, drive greater efficiency and defend established market positions.The move towards SaaS and IoT drives a stronger need for isolation, de-centralisation and scalability of the authentication and authorisation concerns of applications and associated APIs.We will present the architecture and technical aspects our recent project work with Red Hat Single Sign-On to provide security in multi-tenant SaaS environments. This will cover:Patterns for dealing with multi-tenant environments.Integrating Red Hat Single Sign-on with API gateways (Nginx) for API security.PKI lifecycle management and automation.Securing IoT device fleets using Red Hat Single Sign-On.Automating configuration management of Red Hat Single Sign-On in a DevOps environment.We will also share our experience positioning Red Hat Single Sign-On and JBoss Core Services Collection to provide more value to Red Hat JBoss Middleware customers.