Solved

Where does SAML reside

Posted on 2014-07-31
2
429 Views
Last Modified: 2014-08-01
SAML is a security Markup language

Is it resident on a server?

Is it ever pass in association with a message ?

Thanks
0
Comment
Question by:Anthony Lucia
2 Comments
 

Author Comment

by:Anthony Lucia
ID: 40232961
Or does it pass uid and passwords,  etc from a client to a server
0
 
LVL 62

Accepted Solution

by:
btan earned 500 total points
ID: 40234038
SAML is a exchange of language understood for purpose of checking identity based on some attribute and claims. It is not really a file per se storing in some DB.

When a user attempt to request for a service from the service provider, the provider will stop user and ask proof your identity using some claims e.g. email address, userid etc. The user will then need some authority to ascertain that identity claims. These exchanges are based on SAML protocol .. I may be simplifying the use case and probably the below will help with some illustration of the exchanges - eventually it is the 'lingo' that is needed to talk a common language (or they say messages) to get what is requested.

https://blog.surfnet.nl/?p=1417 

The wiki (http://en.wikipedia.org/wiki/SAML_2.0) has diagram and even more details. In practical terms, SAML consists of a set of specifications and XML schemas, which together define how to construct, exchange, consume, interpret, and extend security assertions for a variety of purposes. SAML does not require user information to be maintained and synchronized between directories. The existing store for identity is still retain just that now there is need for the role of broker to handle such messages in this parlance standard.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

It’s a strangely common occurrence that when you send someone their login details for a system, they can’t get in. This article will help you understand why it happens, and what you can do about it.
There are many Password Managers (PM) out there to choose from. PM's can help with your password habits and routines, but they should not be a crutch you rely on too heavily. I also have an article for company/enterprise PM's.
Learn how to create flexible layouts using relative units in CSS.  New relative units added in CSS3 include vw(viewports width), vh(viewports height), vmin(minimum of viewports height and width), and vmax (maximum of viewports height and width).
A simple description of email encryption using a secure portal service. This is one of the choices offered by The Email Laundry for email encryption. The other choices are pdf encryption which creates an encrypted pdf of your email and any attachmen…

895 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now