Start of Content Area

Background documentation SAML Token Profile

Security Assertion Markup Language (SAML) is a standard that defines a language to exchange security information between partners. The SAML standard is driven by the Organization for the Advancement of Structured Information Standards (OASIS). SAML uses assertions that contain statements about a subject, authentication, authorization and attributes.

SAML Token Profile is developed by the OASIS Web Services Security (WS Security) Technical Committee as a standard to integrate and use SAML for Web Services Security.

Although both the SAML token profile and SAML browser artifact use the SAML standard for transferring security information, they are used for different authentication purposes, as shown below:

      SAML token profiles are used for WS access authentication at the SOAP message level.

More information: Configuring SSO with SAML Token Profiles  

      SAML browser artifacts are used for authenticating Web-based access from a Web browser.

More information: Using SAML Browser Artifacts      

 

 

End of Content Area