What is SAML ? Security Assertion markup Language.

In this Salesforce admin tutorial we are going to study about  What is SAML ? Security Assertion markup Language assertion, How SAML works,  Identity providers,  SAML Service Providers, assertion.

What is SAML ?

Security Assertion markup Language is a XML based framework originated in 2001. SAML is basically used for user authentication and authorization between service provider and Identity provider.

Why SAML is implemented in Organisations?

Because of Cloud Computing every organization operating their functions in the “Cloud”. Now authentication and Authorizations must be done to exchange data between Service Provider and Identity Provider. Using SAML protocol we implement Single Sign-on(SSO) in Salesforce.com.

SAML features and benefits.

  1. It is used to enable Single Sign-on function.
  2. SAML enables single logout functionality.
  3. Security Assertion markup Language uses XML assertion to authenticate and authorize users in Salesforce.What is SAML

Security Assertion markup Language(SAML) will have three component they are

Assertions

  1. Authentication :- Who is the user.
  2. Attribute :- Details about User.
  3. Authorization :- is the user authorised to access.

In Assertion we find four important pieces of information they are.

  1. Digital signature provide by Idp.
  2. Issuer: The name of the service Provider.
  3. Entity ID : The name of the service Provider
  4. The Subject: Salesforce.com user id.

SAML Protocol.

  • How data is transmitted between Service Provider and Identity Provider.

SAML Binding

  • Binding in SAML maps protocols.

How to configure SAML settings in Salesforce?

We configure SAML settings in Salesforce to implement Single Sign-on(SSO). Single Sign-on in Salesforce can be done in three steps. They are

  1. Establishing relation between Salesforce and  SAML identity provider.
  2. Downloading digital certificate.
  3. Configuring SAML single single-on settings.

How SAML Works ?

  • Security Assertion Markup Language is mainly based on trust.
  • In Salesforce.com, Single Sign-on must be enabled to create connection between Service Provider and Identity Provider.
  • In this process service provider is connected to Identity providers and Identity provider is connected to end user.

Conclusion

In our next Salesforce admin tutorial we are going to learn about How to SSO using SAMl.