Security Stuff
  • About
  • HackTheBox
    • Windows
      • Forest
      • Escape
      • Timelapse
      • Support
    • Linux
      • TwoMillion
      • Soccer
      • Pollution
      • Pilgrimage
      • Sandworm
  • Windows
    • Authentication
      • Overview
      • Logon
      • Kerberos
      • Credential
    • Active Directory
      • Domain Service
        • LDAP
        • AD Objects
      • Key Distribution Center
      • Certificate Service
    • Windows Protocols
      • SMB
    • Windows Server
      • MSSQL
    • Execution
      • Windows APIs
      • Remote Access
        • WinRM
    • Credential Access
      • Kerberos Ticket
        • Kerberoasting Attack
        • Golden/Silver Ticket Attack
        • AS-REP Roasting Attack
      • OS Credential Dumping
        • DCsync Attack
      • Certified Pre-Owned
  • Linux
    • Management
      • Package
    • Process
      • Namespace
      • Terminal
  • Web
    • Authentication
      • SAML
      • OAuth
    • Enumeration
  • Defense
    • Windows
      • Windows Event Logs
  • Development
    • Programming Language
    • Database
      • MySQL
    • Virtualization
      • Container
    • Cryptography
      • GnuPG
Powered by GitBook
On this page
  • Overview
  • Usage
  • Application
  • Cloud
  • Labs
  1. Web
  2. Authentication

SAML

PreviousAuthenticationNextOAuth

Last updated 1 year ago

Overview

Security Assertion Markup Language (SAML) is primarily used to implement the Single Sign-On between one or multiple Service Providers and one IDentity Provider.

Usage

A user agent, usually a web browser, requests resources protected by a SAML service provider.

The service provider with redirect the user agent to the trust identity provider to authenticate the user.

SAMLResponse

After the successful authentication and getting the SAMLReponse from the identity provider, the user agent will submit SAMLResponse to the SP to log into the service.

Sign-In

The service provider validates the SAMLReponse with the certification of the trust Identity provider.

Application

Cloud

Labs

  • PentesterLab - SAML: Introduction

  • HackTheBox Academic - Attacking Authentication Mechanisms

LogoSingle sign-on  |  Identity and access management  |  Google CloudGoogle Cloud
LogoWhat is single sign-on? - Microsoft EntraMicrosoftLearn
LogoSingle-Sign On SAML - SSO Provider - AWS IAM Identity Center - AWSAmazon Web Services, Inc.