SAML单一登录使用 [英] SAML Single Sign On use
问题描述
我发现您关于SAML的文章非常有趣,同时又有点好奇.我的任务是为客户准备一个"SAML解决方案".他们是身份的先行者,并且正在尝试使用SAML来维护安全的握手,当员工访问供应商的互联网站点时,该握手将授权员工.供应商对于SAML的工作方式一无所知,他们只知道身份提供者应该发送HTTP Post请求,然后他们将发送回响应.除了发送的一个示例编码页面外,他们没有提供任何技术帮助.
我想知道您是否可以给我任何有关这实际上如何工作的见解.这是场景:供应商拥有身份提供者的x509证书文件的副本.供应商提供了用VB.net编写的示例HTTP帖子页面,身份提供者对其进行了更改.该示例页面要求插入一个秘密密钥",该密钥在加密过程中使用.还需要提供用户名和更改帖子的URL.断言和响应已经在要生成的代码中.供应商不确定秘密密钥"应该是什么,据供应商所知,这是发送页面的唯一麻烦.这听起来是否很熟悉,还是您对其他选项有建议?
I have found your article on SAML to be very interesting and at the same time, somewhat curious. I have been tasked with getting a "SAML solution" in place for a client. They are the identity priovider and are trying to use SAML to maintain a secure handshake which will authorize employees when they go to a vendor''s internet site. The vendor is clueless as to how SAML works, they just know that the identity provider should send an HTTP Post request and they will send back a response. They offer no technical help other than the one sample coded page they sent.
I was wondering if you could give me any insight as to how this can actually work. Here''s the scenario: The vendor has a copy of the identity provider''s x509 certificate file. A sample HTTP post page written in VB.net was supplied by the vendor and altered by the identity provider. The sample page required that a "secret key" be inserted, which is used during the encryption process. It also required the username be supplied and the changing of the post url. The assertion and response are already in the code to be generated. The vendor is not sure what the "Secret Key" should be and this is the only hangup to sending the page, as far as the vendor knows. Does this even sound familiar or do you have a suggetion as to any other options?
推荐答案
我在SAML上找到了您的文章
I have found your article on SAML
如果您走到了最后,您将找到一个论坛,您可以在该论坛上向文章的作者发问.他或她碰巧看到此问题的机会非常低.
Had you gone right to the end, you would have found the forum where you can post questions to the article''s author. The chances that he or she will just happen to see this question are quite low.
能否请您提供使用SAML终止网络服务调用所需遵循的过程.
Can you please provide the procedure need to follow to aurthendicate the webservice call using SAML.
这篇关于SAML单一登录使用的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
