From the course: CompTIA CySA+ (CS0-002) Cert Prep: 3 Identity and Access Management
Unlock the full course today
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
SAML
- [Narrator] Modern authentication often takes place over the web. And the Security Assertion Markup Language, SAML, allows browser-based single-sign-on across a variety of web systems. There are three actors in a SAML request. First, there is the end user who wants to use web-based services. In SAML terms, the end user is known as the principal. Second, there's the organization providing the proof of identity, usually the end user's employer, school, or other account provider. This organization is known as the identity provider. Finally, there is the web-based service that the end user wishes to access. This organization is known as the service provider. Here's how web-based single-sign-on works using SAML. First, the end user, principal, requests access to a resource from the service provider. The service provider checks to see if the user already has a logged in session, and if so, just skips ahead and grants access.…
Contents
-
-
-
-
-
Authentication factors3m 30s
-
(Locked)
Multi-factor authentication2m 33s
-
(Locked)
Something you have3m 15s
-
(Locked)
Password authentication protocols2m 45s
-
(Locked)
Single sign-on (SSO) and federation2m 46s
-
(Locked)
RADIUS and TACACS3m 37s
-
(Locked)
Kerberos and LDAP5m 13s
-
(Locked)
SAML2m 38s
-
(Locked)
IDaaS3m 11s
-
(Locked)
Advanced authorization concepts6m 24s
-
-
-
-