tags: #iam #identity-management
- Identity and access management (IAM)
- a framework of policies and technologies to ensure that the right users have the appropriate access to resources
tags: #sso #federation #identity-management
- Single Sign-on (SSO)
- a system in in which a user's single authentication ticket, or token, is trusted across multiple IT systems or even organizations
tags: #saml #identity-management
- Security Assertion Markup Language (SAML)
- an XML-based markup language for security assertions (statements that service providers use to make access-control decisions).
- used for exchanging authentication and authorization data between parties, in particular, between an identity provider and a service provider
- Defines three roles:
- the principal (typically a human user) - requests a service from the service provider
- the identity provider (IdP) - issues authentication assertions to service provider
- the service provider (SP) - provides services to principals. requests identity assertion from identity provider
tags: #sso #federation #identity-management
- links a person's electronic identity and attributes, stored across multiple distinct identity management systems.
- See https://en.wikipedia.org/wiki/Federated_identity
- related to single sign-on (SSO)