Be prepared for a switch Explore the new technology Security-hkisg.pdf · SAML Attributes . Web ......

2. Be prepared for a switch

3. Explore the new technology

Identity

provider

(on-premise)

Service

provider

(cloud)

Who’s that?

Susana

Active

Directory

ADFSv2

(STS)

RP-STS

(STS)

Service

(RP)

Identity and Access

Management

Active Directory Federation

Services

Liberty Alliance IdP Lite, SP Lite Modes Profile Feature IdP Lite IdP SP Lite SP ECP

Web SSO AuthnRequest ● ● ● ●

Web SSO Response (POST) ● ● ● ●

Web SSO Response (artifact) ● ● ● ●

Artifact Resolution Artifact resolution (SOAP) ● ● ● ●

Single Logout IdP & SP-initiated logout ● ● ● ●

IdP Discovery Cookie-based IdP discovery ● ● Optional Optional

Furnish/process metadata Optional Optional Optional Optional

Name ID Mgmt ● ●

Name ID Mapping ● ●

ECP ●

Assertion Query/Request

SAML Attributes

Web Browser SSO Profile

Artifact Resolution Profile

Single Logout Profile

Identity Provider Discovery Profile

Enhanced Client or Proxy (ECP) Profile

IdP Lite*

SP Lite*