SAML Architecture

From NovaOrdis Knowledge Base
Jump to navigation Jump to search

Internal

Domain Model

SAML is specified by the following domain model:

Credential Collector

A system object that collects user credentials to authenticate with the associated Authentication Authority, Attribute Authority, and Policy Decision Point.

Authentication Authority

A system entity that produces authentication assertions.

Session Authority

A system entity (for example, Identity Provider that plays the role of maintaining the state related to the session.