• An Identity Provider (IdP) which authenticates the SAML 2.0 based identity. This is typically an on-premise (or third party) provider that provides the ability to validate and share identity across applications/requesting systems.

• A single sign on product, acting as a Service Provider (SP), to detect logins and appropriately process SAML 2.0 requests and responses.

• For Web Services a SAML 2.0 security-based provider or WS-Policy compliant policy.