Solved

Where does SAML reside

Posted on 2014-07-31
2
433 Views
Last Modified: 2014-08-01
SAML is a security Markup language

Is it resident on a server?

Is it ever pass in association with a message ?

Thanks
0
Comment
Question by:Anthony Lucia
2 Comments
 

Author Comment

by:Anthony Lucia
ID: 40232961
Or does it pass uid and passwords,  etc from a client to a server
0
 
LVL 62

Accepted Solution

by:
btan earned 500 total points
ID: 40234038
SAML is a exchange of language understood for purpose of checking identity based on some attribute and claims. It is not really a file per se storing in some DB.

When a user attempt to request for a service from the service provider, the provider will stop user and ask proof your identity using some claims e.g. email address, userid etc. The user will then need some authority to ascertain that identity claims. These exchanges are based on SAML protocol .. I may be simplifying the use case and probably the below will help with some illustration of the exchanges - eventually it is the 'lingo' that is needed to talk a common language (or they say messages) to get what is requested.

https://blog.surfnet.nl/?p=1417 

The wiki (http://en.wikipedia.org/wiki/SAML_2.0) has diagram and even more details. In practical terms, SAML consists of a set of specifications and XML schemas, which together define how to construct, exchange, consume, interpret, and extend security assertions for a variety of purposes. SAML does not require user information to be maintained and synchronized between directories. The existing store for identity is still retain just that now there is need for the role of broker to handle such messages in this parlance standard.
0

Featured Post

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

With healthcare moving into the digital age with things like Healthcare.gov, the digitization of patient records and video conferencing with patients, data has a much greater chance of being exposed than ever before.
One of the biggest threats facing all high-value targets are APT's.  These threats include sophisticated tactics that "often starts with mapping human organization and collecting intelligence on employees, who are nowadays a weaker link than network…
This tutorial will teach you the core code needed to finalize the addition of a watermark to your image. The viewer will use a small PHP class to learn and create a watermark.
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now