How SAML works

The SAML specification defines three parties:

  • The principal, which is typically a user.
  • The Identity provider (IdP), which is the LDAP-backed SAML identity provider.
  • The service provider (SP), which in this case are the BigFix services.

The SAML standard controls how the identity assertions are exchanged among these three parties. SAML does not specify the method of authentication at the identity provider.

In SAML, one identity provider can provide SAML assertions to many service providers.

For more information about SAML V2.0 use case scenarios, see SAML V2.0 Overview.