SAML is a protocol – used by IT – which authenticates web applications to provide secure and simple access to employees.
SAML 2.0 is the latest version and is an XML-based protocol. This version relies on security tokens that have assertions and can transfer information about a principal (like an end user) between a SAML authority – known as an Identity Provider – and a SAML consumer, which is referred to as a Service Provider.
A SAML assertion provides a user’s identity and is followed by a SAML response and authentication. These verify the identity prior to granting access to an application.
With SAML, businesses have a secure method for confirming user identity while providing access to key applications with single sign-on (SSO).