What is SAML Assertion?

Visitors can check out the Forum FAQ by clicking this link. You have to register before you can post: click the REGISTER link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. View our Forum Privacy Policy.
Want to receive the latest contracting news and advice straight to your inbox? Sign up to the ContractorUK newsletter here. Every sign up will also be entered into a draw to WIN £100 Amazon vouchers!

You are not logged in or you do not have permission to access this page. This could be due to one of several reasons:

You are not logged in. If you are already registered, fill in the form below to log in, or follow the "Sign Up" link to register a new account.
You may not have sufficient privileges to access this page. Are you trying to edit someone else's post, access administrative features or some other privileged system?
If you are trying to post, the administrator may have disabled your account, or it may be awaiting activation.

Bumner replied

20 January 2006, 09:06
Thanks peeps.... I have a problem here whereby SAML Assertion cannot be used as the browser is locked down (doh).... however, users could apparently "supply a SAML as and when required for particular times"... just wondered how, if this is security stipulated across identity and service domain providers, this could be supplied as and when..... accordingly, I am now told that the SAML Assertion code is verbally provided

Had a white noise moment... sorry and thanks again....

cheers again.....
Leave a comment:
ratewhore replied

19 January 2006, 19:10
What is a SAML token? This...

<saml:Assertion…>
<saml:Conditions…/>
<saml:AuthorizationStatement
Decision=“Permit”
Resource=“http://server.domain1.com/index.htm”>
<saml:Subject>
<saml:NameIdentifier
SecurityDomain=“domain2.com”
Name=“user”/>
</saml:Subject>
</saml:AuthorizationStatement>
</saml:Assertion>

This says the user "user" authenticated in security domain "domain2.com" is authorised to access the file "http://server.domain1.com/index.htm". Typically this is a response from a PDP (policy decision point) to a PEP (policy enforcement point). This is an authorisation assertion.

You can also have an authentication assertion stating 'User1' was authenticated to security domain 'dom1' by, say, a digital certificate at time 'x' valid for period 'y'. And also an attribute assertion saying 'User1' has, say, an attribute 'credit limit' with a value of '$5000'.

Of course, there is a previously agreed and configured trust relationship behind the scenes.

HTH...
Leave a comment:
OrangeHopper replied

19 January 2006, 18:28
Should see the trantrum he throws when I ask him a question.
Leave a comment:
MrsGoof replied

19 January 2006, 16:55
Originally posted by Bumner

....and so much for the art of communication... so much for helping a colleague.... my problem - too lazy! cheers......

np any time

OK back to sleep now.
Leave a comment:
Bumner replied

19 January 2006, 16:46
Originally posted by MrsGoof

have you ever heard of Google or wiki?

ffs

....and so much for the art of communication... so much for helping a colleague.... my problem - too lazy! cheers......
Leave a comment:
MrsGoof replied

19 January 2006, 16:38
have you ever heard of Google or wiki?

ffs
Leave a comment:
Bumner started a topic What is SAML Assertion?

19 January 2006, 16:35
What is SAML Assertion?

In layman's terms please?
Tags: None