The SAML “Security Assertion Markup Language” 2.0 is an open and standardized protocol based on XML for exchanging authentication and authorization information between entities or security domains.
The SAML will manage both the format of the XML message called assertion, and the information necessary for authentication and exchange process between two major partners :
– The SP ( Service Provider) or service provider that protects access to requested resources (web sites, applications etc ) by applying a security policy. For example, it blocks all access to an unauthenticated user and goes to her identity provider .
– The IdP ( Identity Provider) is the identity provider that meets the request of the SP. It is responsible for authenticating the user and to forge the response containing information associated with the identity ( general group) and requested by the SP.
The Intranet / HRIS integration : authentication SAML 2.0 allows the customer to manage his own authentication system, its maintenance and the rights of access to services CrossKnowledge. CrossKnowledge promotes the integration of its offerings in the environments of its customers by accompanying the client in the development of its unique authentication with the LMS CrossKnowledge.
About the provider
SAML version 2.0 was approved as an OASIS Standard in March 2005. The complete SAML 2.0 OASIS Standard set (PDF format) and schema files are available in this zip file.
Approved Errata for SAML V2.0 was last produced by the SSTC on 1 May 2012. In addition to the normative errata document, the following non-normative “errata composite” documents have been provided that combine the prescribed corrections with the original specification text, illustrating the changes with margin change bars, struck-through original text, and highlighted new text.