Your SlideShare is downloading. ×
0
IDP Proxy Concept: Accessing Identity Data Sources Everywhere!
IDP Proxy Concept: Accessing Identity Data Sources Everywhere!
IDP Proxy Concept: Accessing Identity Data Sources Everywhere!
IDP Proxy Concept: Accessing Identity Data Sources Everywhere!
IDP Proxy Concept: Accessing Identity Data Sources Everywhere!
IDP Proxy Concept: Accessing Identity Data Sources Everywhere!
IDP Proxy Concept: Accessing Identity Data Sources Everywhere!
IDP Proxy Concept: Accessing Identity Data Sources Everywhere!
IDP Proxy Concept: Accessing Identity Data Sources Everywhere!
IDP Proxy Concept: Accessing Identity Data Sources Everywhere!
IDP Proxy Concept: Accessing Identity Data Sources Everywhere!
IDP Proxy Concept: Accessing Identity Data Sources Everywhere!
IDP Proxy Concept: Accessing Identity Data Sources Everywhere!
IDP Proxy Concept: Accessing Identity Data Sources Everywhere!
IDP Proxy Concept: Accessing Identity Data Sources Everywhere!
IDP Proxy Concept: Accessing Identity Data Sources Everywhere!
IDP Proxy Concept: Accessing Identity Data Sources Everywhere!
Upcoming SlideShare
Loading in...5
×

Thanks for flagging this SlideShare!

Oops! An error has occurred.

×
Saving this for later? Get the SlideShare app to save on your phone or tablet. Read anywhere, anytime – even offline.
Text the download link to your phone
Standard text messaging rates apply

IDP Proxy Concept: Accessing Identity Data Sources Everywhere!

844

Published on

Peter Major, Support Engineer at ForgeRock, presents on IDP Proxy Concept in a Breakout Session at the 2014 IRM Summit in Phoenix, Arizona.

Peter Major, Support Engineer at ForgeRock, presents on IDP Proxy Concept in a Breakout Session at the 2014 IRM Summit in Phoenix, Arizona.

Published in: Software, Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
844
On Slideshare
0
From Embeds
0
Number of Embeds
2
Actions
Shares
0
Downloads
41
Comments
0
Likes
0
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide
  • Mention CDSSO
    Example for federation: OpenAM and SalesForce
  • IdP provides the identity data
    SP performs authorization based on the received identity information
  • usually one Identity Provider and several Service Provider applications
  • signing/encryption
    The SP needs to trust the IdP
    The SP performs its authorization checks once the assertion is received
  • So this was the simple setup, let’s see what is the main difference between this and the IdP Proxy use-case
  • Provides the capability to have more than one Identity Provider
    Gives an abstraction layer between the SP and the IdPs, the SPs only have to trust the IdP Proxy!
    IdP proxy is both IdP and SP
  • IdP selection at IdP Proxy
    IdP Proxy issues new Authentication Request and an Assertion, because the IdP Proxy is both an SP and the IdP
  • Adaptable: it allows you to dynamically choose the IdP
    Borderless: we just removed the border in the STORK project and allow new participants in the deployment with ease
  • Transcript

    1. IRM Summit 2014 IDP PROXY CONCEPT Accessing Identity Data Sources Everywhere! Peter Major
    2. ‹#›IRM Summit 2014 About me ■ Working with OpenSSO/OpenAM since 2009 ■ Support/Sustaining Engineer at ForgeRock since 2011 ■ Contact – @majorpetya – peter.major@forgerock.com – http://blogs.forgerock.org/petermajor – https://github.com/aldaris/
    3. ‹#›IRM Summit 2014 SAML Federations ■ Provides a standardized solution for web browser single sign on ■ Introduces the concept of federated identities ■ Widely used
    4. ‹#›IRM Summit 2014 Terminology ■ Identity Provider (IdP): the authoritative source of identity data ■ Service Provider (SP): content provider ■ Assertion: a set of information about the logged in user
    5. ‹#›IRM Summit 2014 Basic SAML setup
    6. ‹#›IRM Summit 2014 Basic SAML flow
    7. ‹#›IRM Summit 2014 Basic SAML setup
    8. ‹#›IRM Summit 2014 IdP Proxy setup
    9. ‹#›IRM Summit 2014
    10. ‹#›IRM Summit 2014 STORK ■ Secure idenTity acrOss boRders linKed ■ European eID Interoperability Platform ■ Establish e-relations across borders
    11. ‹#›IRM Summit 2014 STORK
    12. ‹#›IRM Summit 2014 STORK
    13. ‹#›IRM Summit 2014 STORK
    14. ‹#›IRM Summit 2014 STORK
    15. ‹#›IRM Summit 2014 IRM
    16. ‹#›IRM Summit 2014 Demo
    17. ‹#›IRM Summit 2014 Questions?

    ×