Difference between revisions of "Security Assertion Markup Language (SAML)"
Jump to navigation
Jump to search
↑ https://docs.rocket.chat/guides/administrator-guides/authentication/saml
(28 intermediate revisions by 2 users not shown) | |||
Line 1: | Line 1: | ||
[[wikipedia:Security Assertion Markup Language]] ([[2002]]) is an open standard for exchanging [[authentication]] and [[authorization]] data. | [[wikipedia:Security Assertion Markup Language]] ([[2002]]) is an open standard for exchanging [[authentication]] and [[authorization]] data. | ||
− | |||
* [[SAML response]] (<code>[[SAMLResponse]]</code>) size | * [[SAML response]] (<code>[[SAMLResponse]]</code>) size | ||
+ | * Adoption: [[Zabbix 5.0 LTS]] (May 2020), [[Rocket.Chat]] <ref>https://docs.rocket.chat/guides/administrator-guides/authentication/saml</ref>, [[Intercom]], [[Amazon WorkSpaces]], [[Notion]] | ||
+ | * [[SAML 2.0]] | ||
− | == | + | == News == |
− | * | + | * SAML 2.0 became an [[OASIS]] Standard in March 2005 |
− | |||
− | |||
== Related terms == | == Related terms == | ||
Line 14: | Line 13: | ||
* [[AAA]]: [[OpenID]], [[OpenID Connect (OIDC)]] | * [[AAA]]: [[OpenID]], [[OpenID Connect (OIDC)]] | ||
* [[AWS Cognito]] | * [[AWS Cognito]] | ||
− | * <code>[[aws iam create-saml-provider]]</code> | + | * [[Identity provider (IdP)]]: <code>[[aws iam create-saml-provider]]</code> |
− | * [[saml2aws]] https://github.com/Versent/saml2aws | + | * <code>[[saml2aws]]</code> https://github.com/Versent/saml2aws |
− | * [[ | + | * Assertions: http://saml.xml.org/assertions |
+ | * <code>[[Claims]]</code> | ||
+ | * <code>[[Error: not a saml app (Google)]]</code> | ||
+ | * [[SAML: Assertion Consumer Service (ACS)]] | ||
+ | * [[Terraform resource]]: <code>[[Terraform resource: aws_elasticsearch_domain_saml_options|aws_elasticsearch_domain_saml_options]]</code> | ||
+ | * <code>[[sts:AssumeRoleWithSAML]]</code> | ||
+ | * [[SAML/Azure AD]], [[SAML/Okta]] | ||
+ | * [[SAML SSO]] | ||
+ | * [[Google Cloud Identity]] | ||
+ | * <code>[[~/.saml2aws]]</code> | ||
== Activities == | == Activities == | ||
+ | * 03/2022 [[How to set up IAM federation using Google Workspace]] | ||
* [[Set up Google Workspace SSO via SAML for Amazon Web Services]]: https://support.google.com/a/answer/6194963 | * [[Set up Google Workspace SSO via SAML for Amazon Web Services]]: https://support.google.com/a/answer/6194963 | ||
+ | * [[How to use G Suite as an external identity provider for AWS SSO]] | ||
* Read stackoverflow: https://stackoverflow.com/questions/tagged/saml-2.0?tab=Votes | * Read stackoverflow: https://stackoverflow.com/questions/tagged/saml-2.0?tab=Votes | ||
− | |||
− | |||
− | |||
− | |||
== See also == | == See also == | ||
− | |||
* {{SSO}} | * {{SSO}} | ||
− | |||
* {{SAML}} | * {{SAML}} | ||
− | + | * {{AAA}} | |
[[Category:Security]] | [[Category:Security]] | ||
[[Category:Identity management]] | [[Category:Identity management]] |
Latest revision as of 09:17, 12 July 2024
wikipedia:Security Assertion Markup Language (2002) is an open standard for exchanging authentication and authorization data.
- SAML response (
SAMLResponse
) size - Adoption: Zabbix 5.0 LTS (May 2020), Rocket.Chat [1], Intercom, Amazon WorkSpaces, Notion
- SAML 2.0
Contents
News[edit]
- SAML 2.0 became an OASIS Standard in March 2005
Related terms[edit]
- Assertion, Attribute
- Gartner: Access Management (AM) Magic Quadrant
- AAA: OpenID, OpenID Connect (OIDC)
- AWS Cognito
- Identity provider (IdP):
aws iam create-saml-provider
saml2aws
https://github.com/Versent/saml2aws- Assertions: http://saml.xml.org/assertions
Claims
Error: not a saml app (Google)
- SAML: Assertion Consumer Service (ACS)
- Terraform resource:
aws_elasticsearch_domain_saml_options
sts:AssumeRoleWithSAML
- SAML/Azure AD, SAML/Okta
- SAML SSO
- Google Cloud Identity
~/.saml2aws
Activities[edit]
- 03/2022 How to set up IAM federation using Google Workspace
- Set up Google Workspace SSO via SAML for Amazon Web Services: https://support.google.com/a/answer/6194963
- How to use G Suite as an external identity provider for AWS SSO
- Read stackoverflow: https://stackoverflow.com/questions/tagged/saml-2.0?tab=Votes
See also[edit]
- Single sign-on: Okta, Red Hat Single Sign-On, Keycloak, SAML, ADFS, Access Management Magic Quadrant, Oracle Access Manager, AWS SSO, Azure Active Directory, Federated authentication, Google Workspace: set up SSO via SAML for Amazon Web Services, Login with, Microsoft account, Shibboleth
- SAML, IdP, Assertion, Attribute, SCIM, Amazon Cognito, OpenID Connect (OIDC), SAML response,
SAML:EduPersonOrgDN
, Assertion Consumer Service (ACS), SAML examples,Entity ID
,Name ID
,SAMLResponse, saml-provider, saml2aws
,aws_iam_saml_provider
- AAA: Authc, Authz, Password policy, OAuth, OpenID, OIDC, LDAP, RADIUS, TACACS+, XTACACS, SAML, Secure LDAP, IEEE 802.1X, CHAP, RBAC, MFA, SCIM, Amazon Cognito
Advertising: