cis 2015 saml-in / saml-out - scott tomilson & john dasilva
TRANSCRIPT
SAML-IN / SAML-OUT Scott Tomilson John DaSilva
Copyright © 2015 Cloud Identity Summit. All rights reserved. 2
Golf
Building Federated Relationships
Your Apps Your Partners
Acme
Beta
Com
SAML ✔
SAML ✔
SAML ✔
Fox Echo
Delta
Copyright © 2015 Cloud Identity Summit. All rights reserved. 3
Groundhog Day
“It’s always February 2nd, and there’s nothing you can do about it.” “It’s always SSO Day, and there’s nothing you can do about it.”
Copyright © 2015 Cloud Identity Summit . All rights reserved. 4 Copyright © 2015 Cloud Identity Summit. All rights reserved. 4
Give me SSO!!
Copyright © 2015 Cloud Identity Summit. All rights reserved. 5
Building Federated Relationships
Your Apps Your Partners
Acme
Beta
Com
SAML
SAML
SAML
Federation Hub
Extending Federation Capabilities
SSO
WS-Fed
Login Acme
Extending Federation Capabilities
SSO
WS-Fed
Login
1 Protocol 1 Partner
Acme
Extending Federation Capabilities
SSO
WS-Fed
Login
1 Protocol 1 Partner
Q: How can you extend your SharePoint environment to additional business partners?
Acme
Extending Federation Capabilities
SSO
WS-Fed
Federation Hub
Extending Federation Capabilities
SSO
WS-Fed
Login WS-Fed Acme
Federation Hub
Extending Federation Capabilities
SSO
WS-Fed
Federation Hub
Login WS-Fed
Login
Login
SAML
SAML
Acme
Beta
Com
… this could easily be any app constrained to a 1 IdP configuration
Federation Protocol Translation
SSO to SP
SSO From IdPs
Translate From Translate To SAML SAML
SAML WS-Fed
WS-Fed SAML
WS-Fed WS-Fed
SAML OpenID Connect
WS-Fed OpenID Connect
Copyright © 2015 Cloud Identity Summit. All rights reserved. 13
Moving to Next Gen Identity
Your Apps Your Partners
Acme
Beta
Com
OpenID Connect
Federation Hub
OpenID Connect
OpenID Connect
SAML
Copyright © 2015 Cloud Identity Summit . All rights reserved. 14 Copyright © 2015 Cloud Identity Summit. All rights reserved. 14
Holy SSO!!