SAML 2.0

Security Assertion Markup Language

SAML 2.0 is an XML-based open standard for exchanging authentication and authorization data between an Identity Provider and a Service Provider, enabling SSO for enterprise applications.

⚙️ How Does It Work?

The user accesses a service provider. The SP redirects to the IdP. The user authenticates. The IdP sends a signed XML SAML assertion back confirming identity and attributes. The SP grants access.

📍 Where Is It Used?

Enterprise SSO for SaaS applications — the dominant SSO protocol for B2B and enterprise app integrations.

💡 Real-World Example

A company uses Okta as its IdP with SAML 2.0. When an employee clicks Salesforce in her Okta dashboard, Okta sends a SAML assertion to Salesforce with her identity and role. She is in instantly, without a Salesforce password.

🔗 Related Terms

OIDC SSO Identity Provider Federation Okta

Stay Ahead in Identity Security

Get weekly IAM, PAM & IGA insights via Identity Pulse.

Subscribe to Identity Pulse →

View posts by
Scroll to top