1. SuzannConnell
Below are brief summaries of an ITs professional view vs. an end-user’s snapshot
view of a few of the benefits of SAML.
SAML
An IT Professional’s Snapshot View An End User’s Snapshot View
What is SAML?
SAML is a multi-tenanted SaaS and
App service similar to the federation
pattern or token-based authN/authZ.
What is SAML?
SAML is the acronym for Security
Assertion Markup Language. SAML
eliminates the need to remember
and use multiple usernames and
passwords for software and apps.
How does SAML work?
SAML works between identity
providers, service providers and
users by asserting the identity of the
user to a system. The identity
provider issues a SAML token to the
user after inspection. The browser is
redirected to the service provider
seamlessly. IT managers have the
responsibility to set a single-factor or
multi-factor authentication.
How does SAML work?
SAML works in a browser or a
mobile device as a link. Clicking the
link gives you access to software
and apps that your corporation uses
without having to use your
username and password separately
for each. Sign in to software and
apps using a single, web-based link.
One click gives you access to all.
What are the benefits of using
SAML?
A few benefits include browser
based application, digitally signed
XML tokens, large SML payloads,
and multiple security options. SAML
supports enterprise to enterprise
and enterprise to SaaS. SAML shifts
the focus from concerns about help
desk user name and password calls
What are the benefits of using
SAML?
SAML saves you time and
eliminates the frustration of
remembering various user names
and passwords. This results in fewer
keystrokes, and erases the need to
contact IT support for username and
password assistance.
2. SuzannConnell
2
SAML
An IT Professional’s Snapshot View An End User’s Snapshot View
to infrastructure. Users connect
directly to the identity provider.
An additional benefit is that you will
not become locked out from
software if you accidently type a
password incorrectly after multiple
times. You will not have to type any
passwords.
Best practices summary
Provide a no-code simplified policy-
based enablement of SAML SSO.
Consider using an API gateway.
Best practices summary
Put a passcode on mobile devices,
laptops and desktops so that others
cannot access your SAML link.
Suzann Connell, M.Ed.
Instructional Design Consultant
suzann@suzannconnell.com