|
|
|
In a federated network, there is an entity that generates SAML assertions. Assertions contain information about a user whose identity is maintained locally at the site that generates them. There is another entity that uses the SAML assertions to authenticate a user and to establish a session for the user.
Depending on the protocol, these two entities are named differently, but the functions they serve are the same.
|
Protocol |
Generates Assertions |
Consumes Assertions |
|
SAML 1.x |
Producer |
Consumer |
|
SAML 2.0 |
Identity Provider (IdP) |
Service Provider (SP) |
|
WS-Federation |
Account Partner (AP) |
Resource Partner (RP) |
A site may be both a producing authority (producer/IdP/AP) and a consuming authority (consumer/SP/RP).
| Copyright © 2010 CA. All rights reserved. | Email CA about this topic |