Questions tagged [saml-2.0]

Security Assertion Markup Language 2.0 (SAML 2.0) is a standard providing means to exchange authentication and authorization data between security domains. It is typically used to achieve cross-domain single sign-on (SSO) and creation of security tokens.

Security Assertion Markup Language (saml) is an xml-based open standard for exchanging authentication and authorization data between security domains, that is, between an identity provider (a producer of assertions) and a service provider (a consumer of assertions). saml is a product of the oasis Security Services Technical Committee.

SAML version 2 (saml-2.0) adds digital signatures and resolves back into the SAML standard enhancements made to the SAML 1.1 (saml-1.1) specification by other systems (for instance Shibboleth and WS-federation).

SAML 2.0 is significantly different from SAML 1.1 and is not backwards compatible, although many systems can handle both.

Questions should have this tag when they are specifically related to SAML 2.0, more general SAML questions should have the less specific saml tag instead.

3007 questions

vote

1 answer

Decryption of SAML authenticaion response failed

I have problem with decryption of the received authentication response SAML message. My app is connected with two IdP's of different types. Frist is ForgeRocks, OpenAM and second Microsoft's ADFS server. Both IdPs were provided with same service…

encryption saml-2.0 adfs2.0 openam federation

asked Jun 26 '14 at 12:17

Rastko

vote

0 answers

How do I limit an SAML IDP to a certain group of users in django?

I'm trying to get my head around some SAML concepts. We are implementing SAML support in our django-based SaaS. According to my understanding, I have to implement a SAML Service Provider. There are ways to do this using, eg djangosaml2. Using…

python django saml saml-2.0

asked Jun 24 '14 at 10:11

Jens Alm

3,027
4
22
24

vote

1 answer

WSO2 Identity Server fails to perform authentication SAML2.0 when consumer URL inaccessible

WSO2 Identity Server fails to perform authentication SAML2.0 consumer URL not reachable We are using WSO2 Identity Server 4.6.0 for SAML 2.0 based Single Sign-On. The authentication was working fine when the Assertion Consumer URL of the service…

saml-2.0 wso2-identity-server

asked Jun 10 '14 at 23:13

JSL

vote

1 answer

Spring WS Security WSS4J with SAML from WSO2

Earlier I was in assumption that, WSS4J is not compatible with SAML, but as I see this http://jaminhitchcock.blogspot.in/2014/05/creating-and-validating-saml-assertions.html , I hope to give a try. But I want to use a Identity Provider(WSO2) to…

wso2 saml-2.0 ws-security wss4j wso2-identity-server

asked Jun 08 '14 at 18:12

Chakradhar K

vote

1 answer

Validate signed assertion embedded in SAMLResponse

I work with OpenSaml library, I want to validate signed assertion (XML Signature) embedded in SAMLResponse that is not signed. Always the validation fail, there are a way to validate the signed assertion without his parent (Response) ? Or, another…

saml saml-2.0 xml-signature opensaml

asked Jun 02 '14 at 08:38

nouri

vote

2 answers

How can we change Openam encryption algorithm for assertion of SAML2?

I know that we can encrypt the assertion, nameID and attribute in openam. Check following link to know how. OpenAM Configured SAML Response Encryption But by default openam encrypts using AES-128.

encryption saml saml-2.0 openam

asked May 26 '14 at 14:23

vmeghani

vote

1 answer

SimpleSAML and Symantec O3

I'm trying to configure SimpleSAML to allow authentication via an external login portal powered by Symantec O3. I've set up SimpleSAML as a SP by editing config/authsources.php and converting the respectful meta data. I've provided my meta data to…

php saml saml-2.0 symantec simplesamlphp

asked May 19 '14 at 10:30

Andrew Czerniachowicz

vote

2 answers

sso saml with weblogic and openam

I'm trying to setup saml sso with openam and weblogic. The reason why I want to use saml is that I have multiple application where I can't change the web.xml to use the j2ee agent. My question is if there is a good document explaining the setup…

weblogic single-sign-on saml-2.0 openam

asked May 15 '14 at 13:59

user3640883

vote

2 answers

Can OIOSAML run as SAML SP in an Azure Website?

We are trying to run OIOSAML as an SAML SP in an Azure Website, but we encounter problems regarding the signing certificates. Azure websites will not allow us to install custom certificates, hence our SigningCertificate under the Federation node in…

azure saml-2.0

asked May 15 '14 at 07:54

Audun

vote

1 answer

Single Logout Profile

I am sending a LogoutRequest from SP initiated SLO to IdP. Ping is used as Identity Provider and on Ping I am getting the error which says "Signature Required" while there is a signature in the LogoutRequest. So I found on some research that if…

java logout saml saml-2.0

asked May 12 '14 at 18:22

yogsma

10,142
31
97
154

vote

1 answer

Unable to lookup idp connection metadata for entityid='http://sp.example.com/sp'

I have service provider application http://sp.example.com/sp and when user accesses it through a browser, user is redirected from my SP application to IdP server which is configured on PingFederate server with an SP…

saml-2.0 pingfederate

asked Apr 28 '14 at 19:01

yogsma

10,142
31
97
154

vote

1 answer

Spring SAML credentials and platform accounts

I was able to integrate Spring Boot and Spring Security SAML by using the @ImportResource annotation. Now, I'd like to go on as follows: the user selects an IdP [DONE]. it performs the login (successful) [DONE]. the SP obtains user data (by parsing…

java spring-security saml saml-2.0 spring-saml

asked Apr 28 '14 at 09:02

vdenotaris

13,297
26
81
132

vote

3 answers

Claims and SAML2 confusion

My understanding is that claims are an STS thing based on WS-trust standard and nothing to do with SAML2 standard. WS-trust STS token can use SAML to send claims in that format. Am I correct?

claims-based-identity saml-2.0 claims sts-securitytokenservice ws-trust

asked Apr 16 '14 at 17:16

user557983

vote

1 answer

How to request IDP to send me additional custom attributes in the AuthnResponse?

I've implemented SSO using spring SAML and I'm wondering is there any way to request the IDP(ssocircle.com in my case) to send me additional attributes along with nameID which it is already sending. Lets say I want the IdP to send me the accountID…

spring-security single-sign-on saml saml-2.0 spring-saml

asked Apr 07 '14 at 14:17

abhilash

vote

1 answer

Get logged in user information in SAML Single Sign On google app engine

I am trying to get the user who is logged in via. SAML Single Sign On. I have already implemented SAML Single Sign On and it works. The code I use for programmatic login is : apps = gdata.apps.service.AppsService(email=username, domain=domain,…

google-app-engine single-sign-on saml-2.0

asked Apr 03 '14 at 10:31

Kartik Domadiya

29,868
19
93
104

Prev 1 2 3

…

99 100 Next