Security Assertion Markup Language (SAML) is an open authentication standard that
allows for
the secure exchange of user identity information from one party to another. SAML supports
single
sign-on (SSO), a technology that allows for a single user login to work across multiple
applications and services. When you configure SAML settings in Deep Discovery Inspector, users signing in to your
organization's portal can seamlessly sign in to Deep Discovery Inspector without an existing Deep Discovery Inspector account.
In SAML single sign-on, a trust relationship is established
between the identity provider (IdP) and the service provider (SP) by using SAML metadata
files. The identity provider contains the user identity information stored on a directory
server. The service provider (which in this case is Deep Discovery Inspector) uses the user
identity information from the identity provider for user authentication and authorization.
Deep Discovery Inspector supports the following identity providers for single sign-on:
To connect Deep Discovery Inspector to your organization environment for single-sign-on, complete the
following:
-
Access the Deep Discovery Inspector management console to obtain the service provider metadata file.
You can also update the certificate in Deep Discovery Inspector.
-
In your identity provider:
-
Configure the required settings for single sign-on.
-
Obtain the metadata file.
For more information, see the documentation that comes with your
identity provider.
-
In Deep Discovery Inspector:
-
Import the metadata file for your identity provider.
-
Create SAML user groups.