Using SAMLv2 for authentication
Security Assertion Markup Language (SAML) is an XML-based OASIS standard for exchanging user identity and security attributes information. It uses security tokens containing assertions to pass information about a principal (usually an end user) between an identity provider (IdP) and a web service.
SAML V2.0 is implemented by grouping a collection of entities to form a Circle of Trust. The Circle of Trust is composed of a Service Provider (SP) and an IdP. The IdP authenticates users and provides details of the authentication information to the SP. The SP hosts services that the user accesses.
In a Circle of Trust, BMC Remedy Single Sign-On is normally configured as an SP for BMC products. The Circle of Trust is then completed with an IdP to provide authentication for the federated single sign-on.
The following table briefly outlines the steps to configure BMC Remedy Single Sign-On for Kerberos authentication.
|1.||In the BMC Remedy Single Sign-On Admin console, you must configure BMC Remedy Single Sign-On as a service provider to handle SAML authentication.|
|2.||After you configure BMC Remedy Single Sign-On as the local service provider, you must configure ADFS as an identity provider to handle SAML authentication.|