Security Assertion Markup
Language (SAML) is an open authentication standard that allows for the secure exchange
of user
identity information from one party to another. SAML supports single sign-on (SSO),
a
technology that allows for a single user login to work across multiple applications
and
services. When you configure SAML settings in
Deep Discovery Web
Inspector, users signing in to your organization's portal can seamlessly
sign in to
Deep Discovery Web
Inspector without
an existing
Deep Discovery Web
Inspector
account.
In SAML single sign-on, a trust relationship is established
between the identity provider (IdP) and the service provider (SP) by using SAML metadata
files. The identity provider contains the user identity information stored on a directory
server. The service provider (which in this case is Deep Discovery Web
Inspector) uses the user
identity information from the identity provider for user authentication and authorization.
Deep Discovery Web
Inspector supports the following identity providers for single sign-on:
To connect Deep Discovery Web
Inspector to your
organization environment for single-sign-on, complete the following:
-
Access the Deep Discovery Web
Inspector management console to obtain the service provider metadata file.
You can also update the certificate in Deep Discovery Web
Inspector.
-
In your identity provider:
-
Configure the required settings for single sign-on.
-
Obtain the federation metadata file.
For more information, see the documentation that comes with your
identity provider.
-
In Deep Discovery Web
Inspector:
-
Import the federation metadata file for your identity
provider.
-
Create SAML user groups.
