User:MeekMark/sandbox/SAML
From SAML-based_products_and_services#Products_that_provide_SAML_actors - IE: https://wiki.riteme.site/wiki/SAML-based_products_and_services#Products_that_provide_SAML_actors
Try out Roles grid
[edit]Example of adding several columns for the existing "Role" column, to allow sorting by a particular "Role" -- since the current table has more than one value for most rows.
Products that provide SAML actors
[edit]SAML actors are Identity Providers (IdP), Service Providers (SP), Discovery Services, ECP Clients, Metadata Services, or Broker/IdP-proxy. This table shows the capability of products according to Kantara Initiative testing.[1][2] Claimed capabilities are in column "other". Each mark denotes that at least one interoperability test was passed. Detailed results with product and test procedure versions are available at the Kantara/Liberty site given below.
NOTE: This table represents a snapshot over time roll up of the most recent product test results (multiple testing rounds). Please note that some products features and abilities may have been updated since they were last tested. Please check the website information of the originating product for the latest features and updates.
Product Name | Project/Vendor | License | Kantara-certified Interoperability | Other Features | |||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
IdP | IdP Light | SP | SP Light | eGov 1.5 | Attr Auth Resp | POST Bind. | Roles | Protocols | |||||||||
Broker | Discovery | ECP | IdP | IdP Proxy | Reverse Proxy | SP | |||||||||||
10Duke Identity Provider[3] | 10Duke | Commercial | SAML 1.1, SAML 2.0, OAuth 2, OpenID, LDAP, Federation | ||||||||||||||
adAS SSO[4] | PRiSE | OSS | SAML 2.0, SAML 1.0, Google, Microsoft365, Facebook, Twitter, Kerberos, LDAP, Federation, OAuth2, OpenID Connect, CAS v1, CAS v2, PAPI, OpenID | ||||||||||||||
ADFS 1.x | Microsoft | Commercial | WS-Federation, WS-Trust, SAML 1.0 | ||||||||||||||
ADFS 2.0 | Microsoft | Commercial | WS-Federation, WS-Trust, SAML 1.1/2.0 | ||||||||||||||
ADFS 2.1 | Microsoft | Commercial | WS-Federation, WS-Trust, SAML 2.0 | ||||||||||||||
ADFS 3.0 | Microsoft | Commercial | WS-Federation, WS-Trust, SAML 2.0, OAuth2 | ||||||||||||||
ADFS 4.0 | Microsoft | Commercial | WS-Federation, WS-Trust, SAML 2.0, OAuth2, OpenID Connect | ||||||||||||||
Aerobase | Aerobase | OSS | Integrated SSO and IDM for browser apps and RESTful web services. Built on top of the OAuth 2.0, OpenID Connect, JSON Web Token (JWT) and SAML 2.0 specifications[5] | ||||||||||||||
Afrilas[6] | Able - AXS Guard | Commercial | SAML 2.0 Strong Authentication without usernames | ||||||||||||||
Asimba[7] | Asimba.org | OSS | (Fork of OpenASelect) | ||||||||||||||
AssureBridge SAMLConnect[8] | AssureBridge | Commercial | SAML 1.1, SAML 2.0, OpenID, WS-Federation, Kerberos, Radius, X509, LDAP | ||||||||||||||
Auth0[9] | Auth0 | Commercial| | OAuth2, OpenID, SAML 1.1, SAML 2.0, WS-Federation, LDAP | ||||||||||||||
Authentic2[10] | Entrouvert | OSS | OpenID 1&2, CAS 1&2, OAuth2, LDAP 2&3, PAM, RADIUS, OATH, Kerberos, X509 | ||||||||||||||
AuthStack[11] | Buckhill | Commercial | SAML 1.0, SAML 1.1, SAML 2.0, LDAP, Kerberos, X509, RADIUS, OAuth2, SOAP/REST API | ||||||||||||||
Azure Active Directory | Microsoft | Commercial | SAML 2.0, WS-Federation, Kerberos Constrained Delegation, OAuth 2.0, OpenID Connect | ||||||||||||||
BIG-IP Access Policy Manager | F5 Networks | Commercial | SAML 2.0 | ||||||||||||||
Bitium[12] | Bitium | Commercial | SAML, SAML 2.0 | ||||||||||||||
CA Single Sign-On[13] | CA | Commercial | SAML 1.0/1/1/2.0, OAuth2, OpenID, WS-Federation | ||||||||||||||
Central Authentication Server (CAS)[14] | Apereo Foundation | Open source | SAML 2.0, OAuth2, OpenID, WS-Federation | ||||||||||||||
Centrify DirectControl | Centrify | Commercial | SAML, OpenID, OAuth, WS-*, LDAP, Kerberos | ||||||||||||||
Ceptor[15] | Ceptor | Commercial | SAML 1.1/2.0, OAuth 2.0, WS-Federation, OpenID Connect, Kerberos | ||||||||||||||
cidaas[16] | cidaas by Widas ID GmbH | Commercial | SAML 2.0, OAuth2, OpenID Connect | ||||||||||||||
Citrix Open Cloud[17] | Citrix | Commercial | SSO Middleware, native service connectors | ||||||||||||||
Cloud Identity Manager | McAfee | Commercial | SAML 2, OpenID, OAuth, XACML, LDAP v3, JM | ||||||||||||||
Cloud Federation Service[18] | Radiant Logic | Commercial | SAML 2.0, WS-Federation, OAuth 2.0, OpenID | ||||||||||||||
Cloudseal[19] | Cloudseal | SaaS | |||||||||||||||
Comfact IDP[20] | Comfact | Commercial | |||||||||||||||
Connectis[21] | Connectis | Commercial | |||||||||||||||
Corto project home | GÉANT | OSS | |||||||||||||||
DACS[22] | Safran Identity & Security | Commercial | SSO, OpenID Connect, OATH & OCRA, SMS, X509v3 Certificate, eID card, FIDO UAF, LDAP/AD, multi-factor | ||||||||||||||
Dot Net Workflow[23] | The Dot Net Factory | Commercial | WS*-, WS-Federation, WS-Trust, OpenID, OAuth 2.0, Facebook, LinkedIn, Twitter, Yahoo, Windows Live (MSN) | ||||||||||||||
DirX Access[24] | Atos/Siemens | Commercial | |||||||||||||||
DualShield[25] | Deepnet Security | Commercial | SAML 2.0 | ||||||||||||||
Elastic SSO Team[26] | 9STAR | Commercial | SAML 2.0 SAML 1.1 | ||||||||||||||
Elastic SSO Enterprise[27] | 9STAR | Commercial | SAML 2.0 SAML 1.1 | ||||||||||||||
ESOE | Queensland University of Technology | OSS | |||||||||||||||
Entrust GetAccess[28] | Entrust | Commercial | SAML 1.0, SAML 1.1, SAML 2.0 | ||||||||||||||
Entrust IdentityGuard[29] | Entrust | Commercial | SAML 2.0, OpenID | ||||||||||||||
EIC[30] | Ericsson | Commercial | |||||||||||||||
EmpowerID[31] | The Dot Net Factory | Commercial | WS*-, WS-Federation, WS-Trust, OpenID, OAuth 2.0, Facebook, LinkedIn, Twitter, Yahoo, Windows Live (MSN) | ||||||||||||||
Evidian Web Access Manager | Evidian | Commercial | SAML 1.1, SAML 2.0, OpenID Connect, CAS 1&2, OAuth2, LDAP v3, RADIUS, OATH, Kerberos, X509, Microsoft365, Google, Multi-factor, SSO, extended integration functionalities, Federation | ||||||||||||||
Fluig Identity | TOTVS | Commercial | SAML 2.0 | ||||||||||||||
Forum Sentry[32] | Forum Systems | Commercial | WS-Federation, WS-Trust, SAML 2.0, SAML 1.1, OAuth 1.0.a. OAuth 2, OpenID Connect | ||||||||||||||
Fugen Cloud ID Broker | Fugen Solutions | Commercial | SAML 1.1, SAML 2.0, WS-Federation, WS-Trust, OpenID, and OAuth | ||||||||||||||
FusionAuth[33] | FusionAuth | Commercial | SAML 2.0, OIDC, OAuth, LDAP | ||||||||||||||
GlobalSign SSO | GMO GlobalSign | Commercial | SAML 2.0, ETSI MSS 102 204, TUPAS, WS-Federation, OpenID | ||||||||||||||
Gluu Server[35] | Gluu | OSS | OpenID Connect, UMA, RADIUS, LDAP, FIDO, OAuth | ||||||||||||||
Hitachi ID Identity and Access Management Suite[36] | Hitachi ID Systems, Inc. | Commercial | SAML 2.0 | ||||||||||||||
Horizon App Manager[37] | VMware | Commercial | ? | ||||||||||||||
HP IceWall SSO[38] | HP | Commercial | SAML 2 | ||||||||||||||
ILANTUS Sign On Express[39] | Ilantus | Commercial | SAML 2 | ||||||||||||||
Intel Cloud SSO[40] | Intel | Commercial | SAML 2, OpenID, OAuth | ||||||||||||||
Ilex Sign&go[41] | ILEX | Commercial | WS-Federation, WS-Trust, SAML 2.0, SAML 1.0, Shibboleth, CAS, Google, Microsoft365, Facebook, Kerberos, LDAP | ||||||||||||||
iSAML[42] | Avoco | Commercial | SAML 2, WS-Trust, OpenID | ||||||||||||||
iWelcome[43] | iWelcome | Commercial | SAML 2, SAML 1.0, WS-Trust, Kerberos, OAuth2, Facebook, google, includes provisioning from-to on-Prem, AD, Multi-factor, extended integration functionalities | ||||||||||||||
JOSSO (Community Ed.)[44] | josso.org | OSS | SAML2, OAuth2, WS-Trust, SPMLV2, Kerberos, JOSSO1 | ||||||||||||||
JOSSO (Enterprise Ed.)[45] | Atricore | Commercial | SAML2, WS-Fed, OpenID Connect, OAuth2, WS-Trust, SPMLV2, Kerberos, JOSSO1 | ||||||||||||||
Juniper SSL VPN[46] | Juniper Networks | Commercial | |||||||||||||||
Keycloak | JBoss | OSS | Integrated SSO and IDM for browser apps and RESTful web services. Built on top of the OAuth 2.0, OpenID Connect, JSON Web Token (JWT) and SAML 2.0 specifications[47] | ||||||||||||||
Layer 7[48] | SecureSpan Gateway | Commercial | PDP/PEP, Auth2, SAML 1.1, SAML2, ABAC, OpenID Connect, XML Firewall | ||||||||||||||
Larpe[49] | Entrouvert | OSS | SAML, OpenID, CAS, OAuth | ||||||||||||||
LemonLDAP::NG[50] | LemonLDAP::NG | OSS | SSO, WS-Federation, CAS, OpenID-Connect, SAML-2, Twitter, Protocol proxy | ||||||||||||||
LoginRadius | LoginRadius | Commercial | Web SSO, Federation SSO, SAML, OAuth, OIDC, WS-Federation, JWT | ||||||||||||||
MicroFocus (NetIQ) Access Manager[51] | NetIQ (formerly Novell) | Commercial | + SP Broker |
WS-Security, WS-Federation, WS-Trust, SAML 1.1 / 2.0, Liberty, Single Sign-on, RBAC, CardSpace, OAuth 2.0, OpenID, STS. Includes out of the box integration with cloud and social media providers (Office 365, Windows Live (MSN), Google, Facebook, Salesforce, Amazon web services and 200+ preconfigured connections to SaaS providers etc.) Integration for Advanced Authentication Framework | |||||||||||||
miniOrange[52] | miniOrange | Commercial | + Identity Broker |
SAML 2.0, OAuth2, OpenID Connect, WS-Fed | |||||||||||||
NetWeaver Appserver[53] | SAP | Commercial | ? | CAS, OpenId, Twitter | |||||||||||||
OneGate[54] | MobilityGuard | Commercial | SAML 1.1, SAML 2.0 | ||||||||||||||
OpenAM | Open Identity Community [1], ForgeRock (ex. Sun) until 2016[55] | CDDL | OpenID Connect, OAuth2, SAML 2.0, SAML 1.1, WS-Federation, WS-Trust, XACML, Liberty, Kerberos, Facebook, Google, Windows Live (MSN) | ||||||||||||||
Okta[56] | Okta | Commercial | WS-Federation, WS-Trust, SAML 2.0, OAuth2, OpenID Connect | ||||||||||||||
OneLogin[57] | OneLogin | Commercial | SAML, WS-Federation, Kerberos, OAuth, OpenID | ||||||||||||||
OpenAthens LA[58] | eduserv | Commercial | |||||||||||||||
OpenAthens SP[59] | eduserv | Commercial | |||||||||||||||
Open Select[60] | OpenASelect.org | OSS | OAuth (project continues as asimba) | ||||||||||||||
Optimal IdM VIS Federation Services[61] | Optimal IdM | Commercial | + Proxy, SSO | WS-Federation, WS-Trust, SAML 1.x, SAML 2.0, OAuth2, OpenID Connect, SCIM, Facebook, Twitter, LinkedIn, Google, IWA, X509, Kerberos, LDAP, Office 365, RADIUS, MFA (Push, SMS, Email, Voice, TOTP, U2F, Radius) | |||||||||||||
Oracle Identity Federation 11g[62] | Oracle | Commercial | WS-Federation, SAML 1.x, SAML 2.0, OpenID 2.0 | ||||||||||||||
Pega 7 Platform[63] | Pegasystems Inc. | Commercial | SAML 2.0, OAuth, WS-Trust, LDAP | ||||||||||||||
PhoneFactor[64] | PhoneFactor, Inc | Commercial | |||||||||||||||
PicketLink[65] | JBoss Community | OSS | OpenID, A-Select, CAS, XACML | ||||||||||||||
PingFederate[66] | Ping Identity | Commercial | SAML 1.1, SAML 2.0, WS-Federation, WS-Trust, WS-Security, OAuth, OpenID Connect, OpenID, SCIM, Facebook, Twitter, LinkedIn, Google, Windows Live, Kerberos, IWA, X.509, LDAP, RADIUS, 3rd Party MFA | ||||||||||||||
PortalGuard[67] | PistolStar, Inc. | Commercial | SAML 2, LDAP v3, XML-DSIG, SSO Middleware | ||||||||||||||
RSA Federated Identity[68] | RSA | Commercial | Facebook, OpenID, LinkedIn, Twitter, Windows Live | ||||||||||||||
SAASPASS | SAASPASS | Commercial | WS-Federation, WS-Trust, SAML 2.0, OAuth2, OpenID Connect, LDAP | ||||||||||||||
Safewhere*Identify[69] | Safewhere | Commercial | SAML 2.0, WS-Federation, WS-Trust, OAuth 2.0, multi-factor, OpenID Connect, Facebook, LinkedIn, Twitter, LiveID, Google, LDAP | ||||||||||||||
SailPoint IdentityNow[70] | SailPoint | Commercial | SAML 1.1, SAML 2.0, OAuth2, Kerberos, WS-Federation | ||||||||||||||
Samanage[71] | Samanage | Commercial | Enterprise-to-cloud SSO Middleware | ||||||||||||||
SATOSA[72] | SATOSA | OSS | Proxy between SAML2, OpenID Connect and OAuth2 | ||||||||||||||
SecureAuth[73] | SecureAuth Corp. | Commercial | 2-Factor, IBM LTPA, Facebook, Google, LinkedIn, Microsoft FBA, Microsoft IWA, OAUTH, OpenID, OpenID Connect, SAML 1.1, SAML 2.0, Twitter, WebServices, Windows Live, X.509v3, Yahoo | ||||||||||||||
Shibboleth | Internet2 | OSS | SAML 1.1, SAML 2.0 | ||||||||||||||
SimpleSAMLphp[74] | UNINETT AS | OSS | OpenID, A-Select, CAS, WS-Federation and OAuth,Facebook,LinkedIn,Twitter, Windows Live, SAML 2 | ||||||||||||||
Smartsignin[75] | PerfectCloud | Commercial | SAML 2.0, SAML 1.0, Google, Microsoft365, LDAP, WS-Federation | ||||||||||||||
SMS PASSCODE Multi-factor Authentication[76] | SMS PASSCODE | Commercial | ? | ||||||||||||||
SSO EasyConnect[77] | SSO Easy | Commercial | |||||||||||||||
SSOgen | SSOGEN Corporation | Commercial | SAML 1.1, SAML 2.0,OAuth2,OpenID Connect,OpenID Provider,RADIUS, LDAP, Multi Factor Authentication.
Cloud SSO Solution for enterprises to protect on-premise applications such as SSOgen for Oracle EBS, SSOgen for PeopleSoft, SSOgen for JDE, and SSOgen for SAP, with a web server plug-in and Cloud SaaS applications with SAML, OpenID Connect integrations. | ||||||||||||||
Symlabs Federated Identity Suite[78] | Symlabs | Commercial | OpenID, A-Select, CAS, WS-Federation and OAuth | ||||||||||||||
Symplified[79] | Symplified | Commercial | SAML 1.1, SAML 2.0, WS-Federation, OpenID, OAuth, XACML, IBM LTPA, Microsoft IWA, 2-Factor, Facebook, Google, Twitter, ABAC / context-based AC | ||||||||||||||
Tivoli Federated Identity Manager[80] | IBM | Commercial | WS-Federation, OpenID, Liberty, InfoCard, Microsoft CardSpace | ||||||||||||||
TrustBind[81] | NTT Software Corp | Commercial | OpenID, ID-WSF | ||||||||||||||
TrustBuilder[82] | SecurIT | Commercial | SAML 2.0, OAuth 2.0, OpenID Connect, Kerberos | ||||||||||||||
Trustelem[83] | Trustelem | Commercial | SAML 2.0, OpenID Connect, WS-Fed, OAuth 2.0, Integrated Windows Authentication, Kerberos, Active Directory, LDAP, FIDO U2F. | ||||||||||||||
USP Secure Entry Server[84] | United Security Providers | Commercial | SAML 2.0, SAML 1.0, Kerberos, NTLM, LDAP, RADIUS, RSA, SuisseID, RBAC, SSO, Tomcat Authenticator, IIS ISAPI Filter, mTAN, PKI/X.509, Reverse Proxy, Multi-Factor, SOAP/REST Connectors, WebService Security, Office365, GoogleApps | ||||||||||||||
Weblogic | Oracle | Commercial | |||||||||||||||
WSO2[85] | wso2 | OSS | OAuth2, WS-Trust, OpenID | ||||||||||||||
ZXID[86] | zxid | OSS | ID-WSF2, XACML2, WS-Security, XML-DSIG, TAS3 |
- ^ "Kantara Initiative 2011 Q1 SAML 2.0 Full-Matrix Interoperability Testing".
- ^ "Liberty Alliance SAML interoperability tests".
- ^ "10Duke Identity Provider".
- ^ "adAS SSO".
- ^ "Aerobase". Aerobase Org.
- ^ "Afrilas".
- ^ "Asimba".
- ^ "AssureBridge".
- ^ "Auth0". Auth0. Retrieved 2019-12-12.
{{cite web}}
: CS1 maint: url-status (link) - ^ "Authentic2".
- ^ "Authstack - Identity Access Management (IAM) and Single Sign-On Software". www.buckhill.co.uk. Retrieved 2017-05-15.
- ^ "Bitium Single Sign-on".
- ^ "CA Federation Manager".
- ^ "CAS SAML2 Authentication".
- ^ "Secure IT Infrastructure for Online Business Applications | Ceptor". Ceptor. Retrieved 2018-02-26.
- ^ "cidaas – European Cloud Identity and Access Management". cidaas. Retrieved 2020-11-21.
- ^ "Citrix Open Cloud Access".
- ^ "RadiantOne Cloud Federation Service".
- ^ "Cloudseal SSO for Java".
- ^ "Comfact IDP".
- ^ "Connectis".
- ^ "Morpho DACS" (PDF).
- ^ "Dot Net Workflow cloud and corporate SSO and Federation".
- ^ "DirX Access".
- ^ "DualShield unified authentication platform".
- ^ "9STAR's Elastic SSO Team".
- ^ "9STAR's Elastic SSO Enterprise".
- ^ "Entrust GetAccess".
- ^ "Entrust IdentityGuard".
- ^ "EIC".
- ^ "EmpowerID".
- ^ "API Security Gateway".
- ^ "FusionAuth Community Edition".
- ^ "GlobalSign SSO". 30 March 2020.
- ^ "Open Source Access Management".
- ^ "IAM Solutions".
- ^ "Horizon App Manager".
- ^ "HP IceWall SSO".
- ^ "ILANTUS Xpress Sign-On".
- ^ "Intel Cloud SSO".
- ^ "Ilex".
- ^ "Avoco Identity".
- ^ "iWelcome".
- ^ "JOSSO (Community Edition)".
- ^ "JOSSO (Enterprise Edition)".
- ^ "Juniper SSL VPN" (PDF).
- ^ "Keycloak". JBoss Community.
- ^ "Layer 7".
- ^ "Larpe".
- ^ "LemonLDAP::NG".
- ^ "NetIQ Access Manager".
- ^ {{ | url=https://www.miniorange.com/ | title=Cloud/On-Premise service platform}}
- ^ "NetWeaver Appserver".
- ^ "Mobilityguard OneGate". mobilityguard.com. Retrieved 2016-02-20.
- ^ "ForgeRock has shuttered the open-source community, and no longer allows new development on their platform under a permissive license". timeforafork. June 1, 2017. Retrieved June 1, 2017.
- ^ "Cloud service platform".
- ^ "OneLogin Single Sign On".
- ^ "OpenAthens LA".
- ^ "OpenAthens SP".
- ^ "OpenASelect".
- ^ "Optimal IdM VIS Federation Services".
- ^ "Oracle Identity Federation 11g".
- ^ "Pega7". 15 September 2020.
- ^ "PhoneFactor".
- ^ "PicketLink".
- ^ "PingFederate".
- ^ "PortalGuard".
- ^ "RSA Federated Identity Manager".
- ^ "Safewhere*Identify".
- ^ "SailPoint IdentityNow".
- ^ "Samanage".
- ^ "Github/SATOSA". 25 October 2021.
- ^ "SecureAuth".
- ^ "SimpleSAMLphp".
- ^ "Smartsignin Single Sign-on".
- ^ "SMS PASSCODE".
- ^ "SSO EasyConnect".
- ^ Symlabs "Federated Identity Suite".
{{cite web}}
: Check|url=
value (help) - ^ "Symplified".
- ^ "Tivoli Federated Identity Manager".
- ^ "TrustBind/Federation Manager".
- ^ "TrustBuilder".
- ^ "Trustelem Cloud SSO | Active Directory and multi-factor authentication". www.trustelem.com. Retrieved 2017-05-15.
- ^ "USP Secure Entry Server".
- ^ "WSO2".
- ^ "ZXID".