SAML 2.0: Difference between revisions
Jump to navigation
Jump to search
| Line 15: | Line 15: | ||
==SAML== | ==SAML== | ||
SAML stands for Security Assertion Markup Language and ''defines the syntax and processing semantics of assertions made about a subject by a system entity.''<br> | SAML stands for Security Assertion Markup Language and ''defines the syntax and processing semantics of assertions made about a subject by a system entity.''<br> | ||
In SAML the thing providing the service is the Service Provider '''(SP)''' e.g. HR System and the thing providing the Authentication is the Identity Provider '''(IdP)''' | In SAML the thing providing the service is the Service Provider '''(SP)''' e.g. HR System and the thing providing the Authentication is the Identity Provider '''(IdP)'''<br> | ||
<br> | |||
Here is an example for a typical workflow where Citrix is the service provider. | |||
[[File:SAML Workflow.png|600px]] | |||
<br> | |||
Revision as of 00:46, 17 July 2021
Introduction
What is SSO (Single Sign On)
Some definitions
- Authentication Verifying an identify
- Authorization Verifying user has permission and access
- Federation is when authentication is happen across multi vendor apps
SSO is the ability to authenticate via one authority.
Benefits are
- Authentication under your control (Audit, turn off/on etc)
- One set of credentials
- Login once per session
SAML
SAML stands for Security Assertion Markup Language and defines the syntax and processing semantics of assertions made about a subject by a system entity.
In SAML the thing providing the service is the Service Provider (SP) e.g. HR System and the thing providing the Authentication is the Identity Provider (IdP)
Here is an example for a typical workflow where Citrix is the service provider.
