SAML - Cloud Single Sign On
miniOrange acts as an identity provider and lets an enduser login to access services provided by service provider.

SAML

Security Assertion Markup Language (SAML) is an XML standard that allows secure web domains to exchange user authentication and authorization data. Using SAML, an online service provider can contact a separate online identity provider to authenticate users who are trying to access secure content.

The SAML specification defines three roles:

In the use case addressed by SAML, the principal requests a service from the service provider. The service provider requests and obtains an identity assertion from the identity provider. On the basis of this assertion, the service provider can make an access control decision - in other words it can decide whether to perform some service for the connected principal.


Let us take an example to show you how to configure miniOrange Self-Service Console as a service provider by accepting a SAML assertion generated by the miniOrange IDP.