Category: SAML2

Security Assertion Markup Language

SAML2 Signature validation tool for SAML2 Response and Assertion

This is a simple command line tool that you can validate your SAML2 Response and Assertion signatures. This has been implemented using Apache OpenSAML and Xmlsec libraries. You can download the zip file from here… and source also would be available inside side and svn from here. Therefore you can modify and change it as […]

Handling SP-IDP Session Synchronization with SAML2 SSO

When we are working with SAML2 SSO, one of the common question that is come in to the picture, is that the handling of session time out between SAML2 IDP and multiple SPs. (when single logout is enabled) Lets try to understand some common problems. 1. Does SP need to send SAML Logout request to […]

[Federated Authentication] : Integrating TestShib with WSO2 Identity Server

In my last blog post,  we went through, how we can configure Shibboleth IDP as an Federated IDP for WSO2 Identity Server. Today lets see how we can configure Identity Server with testshib (https://testshib.org/) which is also shibboleth IDP that is available online for testing purposes. Configure Identity Server as SP in testshib IDP testshib has been already configured. […]

IDP Initiated SAML2 SSO with WSO2 Identity Server

As mentioned in my previous post, we discussed how we can use Identity Server as SAML2 SSO IDP. We tried to configure the sample “travelocity.com” application. Now let see how we can achieve the IDP Initiated SAML2 SSO with same setup. Step 1. Enable IdP Initiated SSO. You need to tick on “Enable IdP Initiated […]

[Federated Authentication] : Integrating Shibboleth with WSO2 Identity Server

In my previous blog post,  we went through how you can configure the SAML2 SSO web application with Identity Server. Users authenticate to Identity Server by proving username/password. These username/password must be authenticated with the enterprise user store that is deployed with Identity Server. Therefore only the user who are in the enterprise user store […]

Troubleshooting SAML2 Web SSO Scenarios

If you are working on developing, integrating and testing SAML2 based SSO scenarios;  It would be really useful, If we can trace the SAML2 messages that are going here and there. Once of the great tool that we can use for this, is the SSO Tracer It is just a firefox plugin and you can install it in […]