SAML Authentication and Elements
SAML is an authentication mechanism used for authenticating a user in DSR and SDS. It is an additional authentication mechanism to the existing local and LDAP authentication mechanisms.
SAML is an open standard used for authentication. Web applications uses SAML to transfer authentication data between the Identity Provider (IDP) and the Service Provider (SP). Web applications leverage SAML through the IDP to authenticate the user. There is no need for the SP to store passwords and address forgotten password issues.
IDP and SP exchange their metadata which contains the required information for interaction.
- Enable Saml authentication functionality from General Options screen.
- Customer needs to upload IDP Metadata file in DSR/SDS.
- Customer needs to upload DSR/SDS Metadata file on their IDP.
- Once configuration is complete, the user can login through SAML
using url:
<ipaddress>?auth=SAML
Note:
- DSR/SDS will act as a Service Provider, and the sample Metadata of SP is provided in DSR/SDS Metadata File.
- The customer provides the IDP Metadata file, and it can be uploaded only from the Active NOAM screen.
- Configuration of Metadata on customer's IDP is not within the scope of DSR/SDS.
- SAML Authentication Screen allows the configuration of IDP metadata file.
SAML Authentication Elements
Table 2-55 SAML Authentication Elements
| Element | Description | Data Input Notes |
|---|---|---|
| Entity Id | Entity Id of IDP Server | Format: String |