Questions tagged [saml-2.0]

Security Assertion Markup Language 2.0 (SAML 2.0) is a standard providing means to exchange authentication and authorization data between security domains. It is typically used to achieve cross-domain single sign-on (SSO) and creation of security tokens.

Security Assertion Markup Language (saml) is an xml-based open standard for exchanging authentication and authorization data between security domains, that is, between an identity provider (a producer of assertions) and a service provider (a consumer of assertions). saml is a product of the oasis Security Services Technical Committee.

SAML version 2 (saml-2.0) adds digital signatures and resolves back into the SAML standard enhancements made to the SAML 1.1 (saml-1.1) specification by other systems (for instance Shibboleth and WS-federation).

SAML 2.0 is significantly different from SAML 1.1 and is not backwards compatible, although many systems can handle both.

Questions should have this tag when they are specifically related to SAML 2.0, more general SAML questions should have the less specific saml tag instead.

3007 questions

vote

1 answer

How to get SAML2 Bearer Assertion profile for OAuth within WSO2 API Manager to work?

I have problems getting work "SAML2 Bearer Assertion profile for Oauth" within WSO2 API Manager. I'm trying to apply "Johann's Wall" How-to on API Manager (ver. 1.5) but running in the following error. [2013-11-08 17:44:35,930] DEBUG -…

oauth wso2 saml-2.0

asked Nov 08 '13 at 18:27

MNicks

vote

1 answer

How to transfer our user to partner's website when we are IdentityProvider and we have initiated the handhsake in ASP.NET

We want to send visitors on our website over to a business partner's website. The visitor arrives at our website, surfs around for a while, and then she may click on a particular link that requires her to be sent over to our partner's website to…

asp.net saml-2.0

asked Oct 30 '13 at 13:12

Tim

8,669
31
105
183

vote

0 answers

Need help creating an Encrypted Assertion in C#

Right now I am completely stuck on how to generate Keyinfo from my cert and get into the SAML Schema classes. My internet searches have been pretty much fruitless. I am not using any 3rd party components, nor will I be able to. I need to this in…

c# saml-2.0

asked Oct 25 '13 at 20:21

JCleveland

vote

2 answers

Signing a SamlAssertion in .NET 4.0

I have a SamlAssertion in .Net 4.0. http://msdn.microsoft.com/en-us/library/system.identitymodel.tokens.samlassertion.aspx I need to sign it, then encrypt it, and POST it to a business partner. We are the Identity Provider and initiating the…

c# .net-4.0 saml-2.0

asked Oct 23 '13 at 20:08

Tim

8,669
31
105
183

vote

1 answer

Authorization header in null when setting its value to an Encrypted SAML 2 token

I'm using Thinktechture Identity Server to issue my SAML security tokens using the WS-Trust protocol. Then I'm calling my WEB Api with an Authorization http header containing the token. The token is handled successfully using…

http-headers saml-2.0 thinktecture-ident-server thinktecture-ident-model

asked Oct 21 '13 at 14:54

RonyK

2,644
5
32
42

vote

1 answer

The SAML logout did not complete properly

When sending SAML LogoutRequest to ADFS IdP I am getting on ADFS side error : Microsoft.IdentityServer.Web.RequestFailedException: MSIS7054: The SAML logout did not complete properly. at…

saml-2.0 adfs2.0 adfs federation

asked Sep 17 '13 at 15:24

Rastko

vote

1 answer

SAML 2.0 Assertion request

How do you use SAML 2.0 for redirecting a user from website A to website B? Once the user finishes his activity at website B, he should come back to website A , based on results from website B, he should be able to proceed on website A for further…

java saml-2.0

asked Sep 13 '13 at 18:21

yogsma

10,142
31
97
154

vote

1 answer

SAML 2.0 and OAUTH 2.0 Service Provider

I have a Service Provider hosting web applications. These applications are protected by a J2EE filter, deployed in the Service Provider, that intercepts requests and communicate with SAML 2.0 identity providers. Now the same service provider have…

oauth-2.0 saml-2.0

asked Sep 07 '13 at 08:30

user2703633

vote

0 answers

Weblogic 10.3.5.0 SAML2 SSO -> Error 403 / Error 401

i configured 2 weblogic domains with managed servers as seen in Biemond's blogpost i used the DemoIdentity & DemoTrust i enabled SSL and added to the web.xml of my deployed app: CLIENT-CERT …

weblogic single-sign-on saml-2.0

asked Aug 08 '13 at 14:24

znarf

vote

2 answers

As a service provider; is SCIM a good replacement for ADFS using SAML

We want to provide organisations the ability to integrate their internal Active Directory (AD) with our external cloud product. Our client has a federation server using ADFS, we understand that for us to work with more than one client on this…

active-directory saml-2.0 adfs opensaml scim

asked Jul 30 '13 at 22:24

steve0nz

vote

1 answer

I am configuring simpleSAMLphp with WSO2 4.5.0 Identity server. but getting issue while trying to fetch attributes with saml

I have followed following steps for the configuring the simpleSAMLphp with wso2 Identity server. http://blog.facilelogin.com/2013/06/wso2-identity-server-saml2-idp-with.html which are working properly. After once I make login with wso2 I get…

wso2 single-sign-on saml-2.0

asked Jul 23 '13 at 12:23

Bhavin Vora

vote

1 answer

What is the purpose/usage of SAML 2.0 Auth Request?

I've looked through similar questions and read several articles on SAML 2.0 already, but I still can't make sense of SAML Auth Request. I've implemented several SAML-based SSO solutions where my company is an IdP (identity provider). We've always…

single-sign-on saml-2.0 opensaml

asked Jul 18 '13 at 22:53

Alex Kovshovik

4,085
4
35
36

vote

3 answers

Single Sign On Framework

I want to implement a SSO Framework. My requirement is thus: Once a user log's into particular website and he clicks on an external link, he should not be asked to verify his credentials again. EDIT: Here, I have control over the 'external link'…

java single-sign-on cas saml-2.0 openam

asked Jul 12 '13 at 16:52

Faux Pas

vote

0 answers

WSO2IS: Verifing user is already logged using ssoTokenId and IdentitySAMLSSOServiceSoap webservice

I have followed the steps in this tutorial to retrieve a ssoTokenID in my HTTP response header from the WSO2 Identity Server 4.1.0. I am running this locally. I also have the the IdentitySAMLSSOService available…

authentication single-sign-on wso2 saml-2.0 wso2-identity-server

asked Jul 11 '13 at 08:52

JimRoy

vote

1 answer

WSO2IS: SAML request encoding / decoding

I am using WSO2 Identity Server 4.1.0. I have successfully followed the steps described here (thank you) to get a local SAML2 consumer to work with a local WSO2 Identity Server. The steps mentioned above describe using a Tomcat webapp to 'call' the…

authentication decode encode saml-2.0 wso2-identity-server

asked Jul 02 '13 at 10:04

JimRoy

Prev 1 2 3

…

100