-
New Article: SAML: It's Not just for Web services (3 messages)
- Posted by: Nuno Teixeira
- Posted on: September 28 2009 13:02 EDT
SAML is an XML-based standard for exchanging authentication and authorization data between security domains. The single most important problem that SAML was created to solve is the Web browser Single Sign-On problem. Today, many organizations are now in the SAML "zone of indecision" as to whether to stay with version 1.1 or move to 2.0. This article makes observations about both options. Read ArticleThreaded Messages (3)
- SAML alternatives by Fred Tedious on October 02 2009 16:59 EDT
- SAML SSO by Josh Bregman on October 08 2009 07:28 EDT
- Re: SAML SSO by Frank Teti on October 09 2009 09:05 EDT
-
SAML alternatives[ Go to top ]
- Posted by: Fred Tedious
- Posted on: October 02 2009 16:59 EDT
- in response to Nuno Teixeira
So what do you thing about JOSSO? -
SAML SSO[ Go to top ]
- Posted by: Josh Bregman
- Posted on: October 08 2009 07:28 EDT
- in response to Nuno Teixeira
Frank, I agree with you that there are no a lot of SAML Web SSO resources out there. I do cover this topic in the security chapter of the upcoming Professional Oracle WebLogic Server. Also, SAML is a frequent topic of the Fusion Security Blog I think that SAML and the Web SSO profile works well in federated environments - across security domains. In my experience with customers, I haven't seen SAML SSO used as a general purpose Web SSO solution. I do like the use case implied from your article - using SAML to bridge an environment with multiple SSO products with in an enterprise. JB -
Re: SAML SSO[ Go to top ]
- Posted by: Frank Teti
- Posted on: October 09 2009 09:05 EDT
- in response to Josh Bregman
Maybe you can send that Chapter to me and I can give you my $.02. Frank