SAML Concepts - Profile: Difference between revisions

From NovaOrdis Knowledge Base
Jump to navigation Jump to search
No edit summary
 
(8 intermediate revisions by the same user not shown)
Line 10: Line 10:


A ''profile'' is essentially a use case for SAML. A profile combines [[SAML Concepts#SAML_Assertion|assertions]], [[SAML Concepts#SAML_Protocol|protocols]] and [[SAML Concepts#SAML_Binding|bindings]] to support specific use cases.  For example, the Web Browser SSO Profile specifies how SAML authentication assertions are communicated between an [[SAML Concepts#Identity_Provider|Identity Provider]] and [[SAML Concepts#Service_Provider|Service Provider]] to enable single sign-on for a browser user.
A ''profile'' is essentially a use case for SAML. A profile combines [[SAML Concepts#SAML_Assertion|assertions]], [[SAML Concepts#SAML_Protocol|protocols]] and [[SAML Concepts#SAML_Binding|bindings]] to support specific use cases.  For example, the Web Browser SSO Profile specifies how SAML authentication assertions are communicated between an [[SAML Concepts#Identity_Provider|Identity Provider]] and [[SAML Concepts#Service_Provider|Service Provider]] to enable single sign-on for a browser user.
More formally, the SAML profile defines a set of rules and guidelines for how to embed [[SAML_Concepts#SAML_Assertion|SAML assertions]] into, and extract them from, a protocol or other context of use.


=SAML Profiles=
=SAML Profiles=


* [[SAML Web Browser Single Sign-On Profile|Web Browser Single Sign-On Profile]]
* [[SAML Web Browser Single Sign-On Profile|Web Browser Single Sign-On Profile]]
* Enhanced Client and Proxy (ECP) Profile
* [[SAML Enhanced Client and Proxy Profile|Enhanced Client and Proxy (ECP) Profile]]
* Identity Provider Discovery Profile
* [[SAML Identity Provider Discovery Profile|Identity Provider Discovery Profile]]
* Single Logout Profile
* [[SAML Single Logout Profile|Single Logout Profile]] ("Single Logout")
* Assertion Query/Request Profile
* [[SAML Assertion Query/Request Profile|Assertion Query/Request Profile]]
* Artifact Resolution Profile
* [[SAML Artifact Resolution Profile|Artifact Resolution Profile]]
* Name Identifier Management Profile
* [[SAML Name Identifier Management Profile|Name Identifier Management Profile]]
* Name Identifier Mapping Profile
* Name Identifier Mapping Profile
* Attribute Profiles (rules for mapping attributes expressed in SAML to another attribute representation system):
** [[SAML Basic Attribute Profile|Basic Profile]]
** [[SAML X.500/LDAP Attribute Profile|X.500/LDAP Profile]]
** [[SAML UUID Attribute Profile|UUID Profile]]
** [[SAML DCE PAC Profile Attribute Profile|DCE PAC Profile]]
** [[SAML XACML Attribute Profile|XACML Profile]]
* [[SAML Token Profile]]

Latest revision as of 19:18, 21 February 2017

External

Internal

Overview

A profile is essentially a use case for SAML. A profile combines assertions, protocols and bindings to support specific use cases. For example, the Web Browser SSO Profile specifies how SAML authentication assertions are communicated between an Identity Provider and Service Provider to enable single sign-on for a browser user.

More formally, the SAML profile defines a set of rules and guidelines for how to embed SAML assertions into, and extract them from, a protocol or other context of use.

SAML Profiles