Solved

Where does SAML reside

Posted on 2014-07-31
2
442 Views
Last Modified: 2014-08-01
SAML is a security Markup language

Is it resident on a server?

Is it ever pass in association with a message ?

Thanks
0
Comment
Question by:Anthony Lucia
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 

Author Comment

by:Anthony Lucia
ID: 40232961
Or does it pass uid and passwords,  etc from a client to a server
0
 
LVL 63

Accepted Solution

by:
btan earned 500 total points
ID: 40234038
SAML is a exchange of language understood for purpose of checking identity based on some attribute and claims. It is not really a file per se storing in some DB.

When a user attempt to request for a service from the service provider, the provider will stop user and ask proof your identity using some claims e.g. email address, userid etc. The user will then need some authority to ascertain that identity claims. These exchanges are based on SAML protocol .. I may be simplifying the use case and probably the below will help with some illustration of the exchanges - eventually it is the 'lingo' that is needed to talk a common language (or they say messages) to get what is requested.

https://blog.surfnet.nl/?p=1417 

The wiki (http://en.wikipedia.org/wiki/SAML_2.0) has diagram and even more details. In practical terms, SAML consists of a set of specifications and XML schemas, which together define how to construct, exchange, consume, interpret, and extend security assertions for a variety of purposes. SAML does not require user information to be maintained and synchronized between directories. The existing store for identity is still retain just that now there is need for the role of broker to handle such messages in this parlance standard.
0

Featured Post

SuperAntiSpyware Licenses Discounted by 25% !

Exclusive offer to Experts Exchange Members!
Buy SuperAntiSpyware License(s) from us and save 25% on the regular purchase price.
- Includes Full SuperAntiSpyware Vendor Support Entitlements
- Your Subscription does not begin until you activate your license
- Buy for your friends

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Most MSPs worth their salt are already offering cybersecurity to their customers. But cybersecurity as a service is wide encompassing and can mean many things.  So where are MSPs falling in this spectrum?
No single Antivirus application (despite claims by manufacturers) will catch or protect you from all Virus / Malware or Spyware threats. That doesn't stop you from further protecting yourself however - and this article is to show you how.
The viewer will the learn the benefit of plain text editors and code an HTML5 based template for use in further tutorials.
The viewer will learn the basics of jQuery including how to code hide show and toggles. Reference your jQuery libraries: (CODE) Include your new external js/jQuery file: (CODE) Write your first lines of code to setup your site for jQuery…

740 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question