Questions tagged [saml-2.0]

Security Assertion Markup Language 2.0 (SAML 2.0) is a standard providing means to exchange authentication and authorization data between security domains. It is typically used to achieve cross-domain single sign-on (SSO) and creation of security tokens.

Security Assertion Markup Language (saml) is an xml-based open standard for exchanging authentication and authorization data between security domains, that is, between an identity provider (a producer of assertions) and a service provider (a consumer of assertions). saml is a product of the oasis Security Services Technical Committee.

SAML version 2 (saml-2.0) adds digital signatures and resolves back into the SAML standard enhancements made to the SAML 1.1 (saml-1.1) specification by other systems (for instance Shibboleth and WS-federation).

SAML 2.0 is significantly different from SAML 1.1 and is not backwards compatible, although many systems can handle both.

Questions should have this tag when they are specifically related to SAML 2.0, more general SAML questions should have the less specific saml tag instead.

3007 questions

vote

1 answer

Is SAML metadata required to comply with SAML2.0 spec?

I was wondering if a SAML solution (Identity Provider or Service Provider) needs to support SAML metadata exchange (i.e. SAML-Metadata specification) in order to be defined as fully compliant to SAML 2.0. Looking at the SAML conformance document, it…

xml metadata saml saml-2.0

asked Feb 06 '14 at 01:47

northox

vote

2 answers

Should we use any compression techniques like Deflater to in SAML.?

I am trying to generate the in SP side using OPENSAML-java in saml While on the process noticed that Limitations Of URL Length. So Is it mandatory to use any compression technique to SAML message ,Before I am sending it to TestIdP.? If we use…

java single-sign-on saml-2.0 http-compression opensaml

asked Feb 05 '14 at 11:51

mavis

3,100
3
24
32

vote

1 answer

Why is there no 'Circle of Trust' Configuration in WSO2?

I have not found how to configure a 'Circle of Trust' for SAML2 based identity federation in wso2 Identity server. My scenario is just a single IDP and a SP and create a 'Circle of Trust' and test user account linking.

wso2 saml-2.0

asked Jan 30 '14 at 01:53

user557983

vote

1 answer

creating an AttributeStatement and AuthnStatement node with Kentor AuthServices

new to Saml2, I want to use the Kentor AuthServices .net library for generating a Saml2 response, I have checked the output xml and I can't find any node for either "AttributeStatement" or "AuthnStatement". Does anyone knows how can I deal with them…

saml-2.0 kentor-authservices

asked Jan 16 '14 at 06:11

hlovbeyond

vote

1 answer

Is it valid to use the format email when the NameID value is a username not in the email format?

Is it valid to use the format urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress when the NameID value is a username that is not in the email format? E.g. "foo", NOT "foo@bar.com" Else, in such a scenario should we use…

saml-2.0

asked Jan 14 '14 at 14:32

drox

7,523
4
23
34

vote

0 answers

Google Apps - This account cannot be accessed because we could not parse the login request

I want to do SSO through SAMLResponse, which is generated after receiving the authrequest from Google. But with outlook, I have found that error: Google Apps - This account cannot be accessed because we could not parse the login request. Email…

single-sign-on saml-2.0

asked Jan 09 '14 at 10:37

Rohit Mishra

vote

1 answer

Unexlained simpleSAMLphp behavior, saying that some SAML responses valid and some invalid

IdP is using Ping Federate v6.10. The Service Provider is using simpleSAMLphp. We have confirmed that the IdP is sending the SAML Assertion to the SP. However it is in the simpleSAMLphp where we get the following error: Jan 07 12:42:37 simplesamlphp…

saml-2.0 simplesamlphp

asked Jan 08 '14 at 00:57

funa68

vote

1 answer

Adding Custom Attributes to SimpleSAMLPhp

I'm using this page as a reference guide: core:PHP It reads as applying to attributes that already exist in my LDAP, but what if I wanted to add a new attribute entirely? I added the following two new ones; the first is being renamed to something…

saml-2.0 simplesamlphp

asked Jan 06 '14 at 23:22

justacoder

2,684
6
47
78

vote

2 answers

Do we need to use cookie for SAML2 login?

I'm brand new to the world of SAML-2. I've to implement SAML-2 for our web-based product using java. My colleague has suggested following solution to implement SAML-2. I just wanted to discuss whether it make sense... Scenario A: John logs in for…

java cookies saml-2.0

asked Jan 02 '14 at 16:01

user2112371

vote

1 answer

Where I need to add certificate in ADFS 2.0

I had researched following articles and I had configured ADFS and SAML Response was received successfully in relaying party. To add relaying party I refereed this article: In this configuration they have given sample page to send SAMLAuthnRequest by…

java saml-2.0 adfs2.0

asked Dec 19 '13 at 15:33

user2670256

vote

1 answer

Deep Linking Issues

I am attempting to access a link to a document within an application. When I click on the link I am directed to authenticate via SAML (Ping Federate). Once I am logged into the application the link is lost and it takes me to the application's home…

saml-2.0 deep-linking pingfederate

asked Dec 18 '13 at 23:13

user3117160

vote

1 answer

SAML2 Bearer Assertion profile for OAuth in WSO2 IS 4.5.0 failing

We are using WSO2 IS 4.5.0 for our product implementation. We are implementing SAML2 based SSO between our product applications. And our REST APIs are secured using OAuth2. Now, we are trying to configure IS to issue SAML2 bearer token for OAuth…

oauth-2.0 saml-2.0 wso2-identity-server

asked Nov 28 '13 at 14:26

sasi_personal

vote

1 answer

Processing SAML 2.0 response with Apache CXF RACS

I am trying to implement a SAML Request Assertion Consumer Service (RACS) with Apache CXF 2.7.7 Unfortunately the response of my Identity Provider does not include a keyInfo (which is defined optional in the SAML specification). This leads to an…

cxf single-sign-on saml saml-2.0 cxfrs

asked Nov 25 '13 at 16:11

Christian Metzler

2,971
5
24
30

vote

3 answers

How to implement SAML in asp.net?

Anyone can you please try to clarify my questions regarding single sign on using SAML. a) Can we get the identity provider SAML response by string rawSamlData = Request["SAMLResponse"]; this code? b) What is token in SAML response? c) How can we…

saml-2.0

asked Nov 20 '13 at 08:39

Gopinath G

vote

2 answers

Cant get Spring SAML2 working

I can't seem to get saml2 working. Here is what I have done. I downloaded the sample application from here: https://github.com/spring-projects/spring-security-saml, this was a link from their documentation:…

spring saml-2.0 spring-saml

asked Nov 18 '13 at 09:52

jax

37,735
57
182
278

Prev 1 2 3

…

100 Next