Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

saml on authentication

Posted on 2014-11-27
1
Medium Priority
?
188 Views
Last Modified: 2014-12-01
HI,

Let me know how to implement SSO using SAML 2.0. is it a free ware.
I have a web application, but i want to integrate with facebook and Oracle application,
when i  login to facebook, i could able to login to my web application also and also to
my oracle application, Let me the steps to do that

Thanks
0
Comment
Question by:roy_sanu
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 64

Accepted Solution

by:
btan earned 2000 total points
ID: 40470034
Likely you are looking at Oracle's Internet Identity Services. Mainly your Oracle appl becomes a relying party (RP) to support for Internet-based identity providers (IdP), in this case Facebook. You likely to have two use case namely

a) a Mobile and Social server and pls see the use case stated "37.6.1 Authenticating a Returning User With a Local Account" and "37.6.3 Using OAuth For Access Token Retrieval"

b) via a Webgate and Access Manager and pls see "37.6.4 Authenticating a User With Access Manager and Internet Identity Services"

But note that from the article, it stated the support for Facebook is OAuth2.0 instead of SAML. So having SSO using Oauth with Facebook is the part that is not known as SSO is mostly via SAML. Probably it is good to confirm with Oracle  support. The above is not so called free unless you are already subscribing those identity suite packages.
https://docs.oracle.com/cd/E27559_01/admin.1112/e27239/oicunderstandingoic.htm#AIAAG8548

This is a quick summary (see the diagram) to differentiate SAML and OAuth - http://developers.axiomatics.com/blog/index/entry/authentication-vs-authorization-part-2-saml-and-oauth.html

Just to share SAML is mostly for Enterprise SSO and OAuth is used delegated authorization of internet resources like via RESTful API required by an application making a call (on behalf of someone or something else) to likely a native app on a mobile device etc.

There is still SAML2 with SSO for Weblogic (assuming not getting Facebook) as shared in http://biemond.blogspot.sg/2009/09/sso-with-weblogic-1031-and-saml2.html

More SAML supported soln in http://en.wikipedia.org/wiki/SAML-based_products_and_services
0

Featured Post

How to Use the Help Bell

Need to boost the visibility of your question for solutions? Use the Experts Exchange Help Bell to confirm priority levels and contact subject-matter experts for question attention.  Check out this how-to article for more information.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article is written by John Gates, CISSP. Gates, the SNUG President-Elect, currently holds the position of Manager of Information Systems at Lake Park High School in Roselle, Illinois.
What we learned in Webroot's webinar on multi-vector protection.
The viewer will learn how to implement Singleton Design Pattern in Java.
How to fix incompatible JVM issue while installing Eclipse While installing Eclipse in windows, got one error like above and unable to proceed with the installation. This video describes how to successfully install Eclipse. How to solve incompa…
Suggested Courses

722 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question