Jump to content

User:MeekMark/sandbox/SAML

From Wikipedia, the free encyclopedia

From SAML-based_products_and_services#Products_that_provide_SAML_actors - IE: https://wiki.riteme.site/wiki/SAML-based_products_and_services#Products_that_provide_SAML_actors

Try out Roles grid

[edit]

Example of adding several columns for the existing "Role" column, to allow sorting by a particular "Role" -- since the current table has more than one value for most rows.

Products that provide SAML actors

[edit]

SAML actors are Identity Providers (IdP), Service Providers (SP), Discovery Services, ECP Clients, Metadata Services, or Broker/IdP-proxy. This table shows the capability of products according to Kantara Initiative testing.[1][2] Claimed capabilities are in column "other". Each mark denotes that at least one interoperability test was passed. Detailed results with product and test procedure versions are available at the Kantara/Liberty site given below.

NOTE: This table represents a snapshot over time roll up of the most recent product test results (multiple testing rounds). Please note that some products features and abilities may have been updated since they were last tested. Please check the website information of the originating product for the latest features and updates.

Product Name Project/Vendor License Kantara-certified Interoperability Other Features
IdP IdP Light SP SP Light eGov 1.5 Attr Auth Resp POST Bind. Roles Protocols
Broker Discovery ECP IdP IdP Proxy Reverse Proxy SP
10Duke Identity Provider[3] 10Duke Commercial Yes Yes SAML 1.1, SAML 2.0, OAuth 2, OpenID, LDAP, Federation
adAS SSO[4] PRiSE OSS Yes Yes Yes Yes Yes Yes Yes Yes Yes SAML 2.0, SAML 1.0, Google, Microsoft365, Facebook, Twitter, Kerberos, LDAP, Federation, OAuth2, OpenID Connect, CAS v1, CAS v2, PAPI, OpenID
ADFS 1.x Microsoft Commercial Yes Yes Yes Yes WS-Federation, WS-Trust, SAML 1.0
ADFS 2.0 Microsoft Commercial Yes Yes Yes Yes WS-Federation, WS-Trust, SAML 1.1/2.0
ADFS 2.1 Microsoft Commercial Yes Yes Yes Yes WS-Federation, WS-Trust, SAML 2.0
ADFS 3.0 Microsoft Commercial Yes Yes Yes Yes WS-Federation, WS-Trust, SAML 2.0, OAuth2
ADFS 4.0 Microsoft Commercial Yes Yes Yes Yes WS-Federation, WS-Trust, SAML 2.0, OAuth2, OpenID Connect
Aerobase Aerobase OSS Yes Yes Yes Integrated SSO and IDM for browser apps and RESTful web services. Built on top of the OAuth 2.0, OpenID Connect, JSON Web Token (JWT) and SAML 2.0 specifications[5]
Afrilas[6] Able - AXS Guard Commercial Yes Yes SAML 2.0 Strong Authentication without usernames
Asimba[7] Asimba.org OSS Yes (Fork of OpenASelect)
AssureBridge SAMLConnect[8] AssureBridge Commercial Yes Yes Yes Yes Yes Yes SAML 1.1, SAML 2.0, OpenID, WS-Federation, Kerberos, Radius, X509, LDAP
Auth0[9] Auth0 Commercial| Yes Yes Yes Yes OAuth2, OpenID, SAML 1.1, SAML 2.0, WS-Federation, LDAP
Authentic2[10] Entrouvert OSS Yes Yes OpenID 1&2, CAS 1&2, OAuth2, LDAP 2&3, PAM, RADIUS, OATH, Kerberos, X509
AuthStack[11] Buckhill Commercial Yes Yes Yes Yes Yes Yes Yes Yes SAML 1.0, SAML 1.1, SAML 2.0, LDAP, Kerberos, X509, RADIUS, OAuth2, SOAP/REST API
Azure Active Directory Microsoft Commercial Yes Yes Yes SAML 2.0, WS-Federation, Kerberos Constrained Delegation, OAuth 2.0, OpenID Connect
BIG-IP Access Policy Manager F5 Networks Commercial Yes Yes Yes SAML 2.0
Bitium[12] Bitium Commercial Yes Yes SAML, SAML 2.0
CA Single Sign-On[13] CA Commercial Yes Yes Yes Yes Yes Yes Yes SAML 1.0/1/1/2.0, OAuth2, OpenID, WS-Federation
Central Authentication Server (CAS)[14] Apereo Foundation Open source Yes Yes SAML 2.0, OAuth2, OpenID, WS-Federation
Centrify DirectControl Centrify Commercial Yes SAML, OpenID, OAuth, WS-*, LDAP, Kerberos
Ceptor[15] Ceptor Commercial Yes Yes SAML 1.1/2.0, OAuth 2.0, WS-Federation, OpenID Connect, Kerberos
cidaas[16] cidaas by Widas ID GmbH Commercial Yes Yes SAML 2.0, OAuth2, OpenID Connect
Citrix Open Cloud[17] Citrix Commercial Yes SSO Middleware, native service connectors
Cloud Identity Manager McAfee Commercial Yes SAML 2, OpenID, OAuth, XACML, LDAP v3, JM
Cloud Federation Service[18] Radiant Logic Commercial Yes Yes SAML 2.0, WS-Federation, OAuth 2.0, OpenID
Cloudseal[19] Cloudseal SaaS Yes Yes
Comfact IDP[20] Comfact Commercial Yes
Connectis[21] Connectis Commercial Yes Yes
Corto project home GÉANT OSS Yes
DACS[22] Safran Identity & Security Commercial Yes Yes SSO, OpenID Connect, OATH & OCRA, SMS, X509v3 Certificate, eID card, FIDO UAF, LDAP/AD, multi-factor
Dot Net Workflow[23] The Dot Net Factory Commercial Yes Yes Yes Yes WS*-, WS-Federation, WS-Trust, OpenID, OAuth 2.0, Facebook, LinkedIn, Twitter, Yahoo, Windows Live (MSN)
DirX Access[24] Atos/Siemens Commercial Yes Yes Yes
DualShield[25] Deepnet Security Commercial Yes Yes Yes Yes Yes SAML 2.0
Elastic SSO Team[26] 9STAR Commercial Yes Yes Yes Yes Yes SAML 2.0 SAML 1.1
Elastic SSO Enterprise[27] 9STAR Commercial Yes Yes Yes Yes Yes SAML 2.0 SAML 1.1
ESOE Queensland University of Technology OSS Yes Yes
Entrust GetAccess[28] Entrust Commercial Yes Yes Yes Yes Yes Yes Yes Yes Yes SAML 1.0, SAML 1.1, SAML 2.0
Entrust IdentityGuard[29] Entrust Commercial Yes Yes Yes Yes Yes Yes Yes SAML 2.0, OpenID
EIC[30] Ericsson Commercial Yes
EmpowerID[31] The Dot Net Factory Commercial Yes Yes WS*-, WS-Federation, WS-Trust, OpenID, OAuth 2.0, Facebook, LinkedIn, Twitter, Yahoo, Windows Live (MSN)
Evidian Web Access Manager Evidian Commercial Yes Yes Yes Yes Yes Yes Yes Yes SAML 1.1, SAML 2.0, OpenID Connect, CAS 1&2, OAuth2, LDAP v3, RADIUS, OATH, Kerberos, X509, Microsoft365, Google, Multi-factor, SSO, extended integration functionalities, Federation
Fluig Identity TOTVS Commercial Yes Yes SAML 2.0
Forum Sentry[32] Forum Systems Commercial Yes Yes WS-Federation, WS-Trust, SAML 2.0, SAML 1.1, OAuth 1.0.a. OAuth 2, OpenID Connect
Fugen Cloud ID Broker Fugen Solutions Commercial Yes SAML 1.1, SAML 2.0, WS-Federation, WS-Trust, OpenID, and OAuth
FusionAuth[33] FusionAuth Commercial Yes Yes SAML 2.0, OIDC, OAuth, LDAP
GlobalSign SSO GMO GlobalSign Commercial Yes Yes Yes Yes Yes Yes Yes SAML 2.0, ETSI MSS 102 204, TUPAS, WS-Federation, OpenID
Gluu Server[35] Gluu OSS Yes Yes Yes OpenID Connect, UMA, RADIUS, LDAP, FIDO, OAuth
Hitachi ID Identity and Access Management Suite[36] Hitachi ID Systems, Inc. Commercial Yes Yes SAML 2.0
Horizon App Manager[37] VMware Commercial Yes Yes Yes Yes Yes ?
HP IceWall SSO[38] HP Commercial Yes SAML 2
ILANTUS Sign On Express[39] Ilantus Commercial Yes Yes SAML 2
Intel Cloud SSO[40] Intel Commercial Yes Yes SAML 2, OpenID, OAuth
Ilex Sign&go[41] ILEX Commercial Yes Yes Yes Yes Yes Yes Yes Yes Yes WS-Federation, WS-Trust, SAML 2.0, SAML 1.0, Shibboleth, CAS, Google, Microsoft365, Facebook, Kerberos, LDAP
iSAML[42] Avoco Commercial Yes SAML 2, WS-Trust, OpenID
iWelcome[43] iWelcome Commercial Yes Yes Yes Yes Yes Yes Yes Yes SAML 2, SAML 1.0, WS-Trust, Kerberos, OAuth2, Facebook, google, includes provisioning from-to on-Prem, AD, Multi-factor, extended integration functionalities
JOSSO (Community Ed.)[44] josso.org OSS Yes Yes Yes SAML2, OAuth2, WS-Trust, SPMLV2, Kerberos, JOSSO1
JOSSO (Enterprise Ed.)[45] Atricore Commercial Yes Yes Yes SAML2, WS-Fed, OpenID Connect, OAuth2, WS-Trust, SPMLV2, Kerberos, JOSSO1
Juniper SSL VPN[46] Juniper Networks Commercial Yes Yes
Keycloak JBoss OSS Yes Integrated SSO and IDM for browser apps and RESTful web services. Built on top of the OAuth 2.0, OpenID Connect, JSON Web Token (JWT) and SAML 2.0 specifications[47]
Layer 7[48] SecureSpan Gateway Commercial Yes Yes PDP/PEP, Auth2, SAML 1.1, SAML2, ABAC, OpenID Connect, XML Firewall
Larpe[49] Entrouvert OSS Yes Yes Yes SAML, OpenID, CAS, OAuth
LemonLDAP::NG[50] LemonLDAP::NG OSS Yes Yes SSO, WS-Federation, CAS, OpenID-Connect, SAML-2, Twitter, Protocol proxy
LoginRadius LoginRadius Commercial Yes Yes Web SSO, Federation SSO, SAML, OAuth, OIDC, WS-Federation, JWT
MicroFocus (NetIQ) Access Manager[51] NetIQ (formerly Novell) Commercial Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes
+ SP Broker
WS-Security, WS-Federation, WS-Trust, SAML 1.1 / 2.0, Liberty, Single Sign-on, RBAC, CardSpace, OAuth 2.0, OpenID, STS. Includes out of the box integration with cloud and social media providers (Office 365, Windows Live (MSN), Google, Facebook, Salesforce, Amazon web services and 200+ preconfigured connections to SaaS providers etc.) Integration for Advanced Authentication Framework
miniOrange[52] miniOrange Commercial Yes Yes Yes Yes Yes Yes Yes Yes Yes
+ Identity Broker
SAML 2.0, OAuth2, OpenID Connect, WS-Fed
NetWeaver Appserver[53] SAP Commercial ? CAS, OpenId, Twitter
OneGate[54] MobilityGuard Commercial Yes Yes Yes Yes Yes Yes Yes Yes Yes SAML 1.1, SAML 2.0
OpenAM Open Identity Community [1], ForgeRock (ex. Sun) until 2016[55] CDDL Yes Yes Yes Yes Yes Yes Yes Yes Yes OpenID Connect, OAuth2, SAML 2.0, SAML 1.1, WS-Federation, WS-Trust, XACML, Liberty, Kerberos, Facebook, Google, Windows Live (MSN)
Okta[56] Okta Commercial Yes Yes WS-Federation, WS-Trust, SAML 2.0, OAuth2, OpenID Connect
OneLogin[57] OneLogin Commercial Yes Yes SAML, WS-Federation, Kerberos, OAuth, OpenID
OpenAthens LA[58] eduserv Commercial Yes
OpenAthens SP[59] eduserv Commercial Yes
Open Select[60] OpenASelect.org OSS Yes OAuth (project continues as asimba)
Optimal IdM VIS Federation Services[61] Optimal IdM Commercial Yes Yes Yes Yes Yes Yes + Proxy, SSO WS-Federation, WS-Trust, SAML 1.x, SAML 2.0, OAuth2, OpenID Connect, SCIM, Facebook, Twitter, LinkedIn, Google, IWA, X509, Kerberos, LDAP, Office 365, RADIUS, MFA (Push, SMS, Email, Voice, TOTP, U2F, Radius)
Oracle Identity Federation 11g[62] Oracle Commercial Yes Yes Yes Yes Yes WS-Federation, SAML 1.x, SAML 2.0, OpenID 2.0
Pega 7 Platform[63] Pegasystems Inc. Commercial Yes Yes Yes Yes SAML 2.0, OAuth, WS-Trust, LDAP
PhoneFactor[64] PhoneFactor, Inc Commercial Yes
PicketLink[65] JBoss Community OSS OpenID, A-Select, CAS, XACML
PingFederate[66] Ping Identity Commercial Yes Yes Yes Yes SAML 1.1, SAML 2.0, WS-Federation, WS-Trust, WS-Security, OAuth, OpenID Connect, OpenID, SCIM, Facebook, Twitter, LinkedIn, Google, Windows Live, Kerberos, IWA, X.509, LDAP, RADIUS, 3rd Party MFA
PortalGuard[67] PistolStar, Inc. Commercial Yes Yes SAML 2, LDAP v3, XML-DSIG, SSO Middleware
RSA Federated Identity[68] RSA Commercial Yes Yes Yes Facebook, OpenID, LinkedIn, Twitter, Windows Live
SAASPASS SAASPASS Commercial Yes Yes WS-Federation, WS-Trust, SAML 2.0, OAuth2, OpenID Connect, LDAP
Safewhere*Identify[69] Safewhere Commercial Yes Yes SAML 2.0, WS-Federation, WS-Trust, OAuth 2.0, multi-factor, OpenID Connect, Facebook, LinkedIn, Twitter, LiveID, Google, LDAP
SailPoint IdentityNow[70] SailPoint Commercial Yes Yes SAML 1.1, SAML 2.0, OAuth2, Kerberos, WS-Federation
Samanage[71] Samanage Commercial Yes Enterprise-to-cloud SSO Middleware
SATOSA[72] SATOSA OSS Yes Proxy between SAML2, OpenID Connect and OAuth2
SecureAuth[73] SecureAuth Corp. Commercial Yes Yes Yes Yes Yes Yes Yes Yes Yes 2-Factor, IBM LTPA, Facebook, Google, LinkedIn, Microsoft FBA, Microsoft IWA, OAUTH, OpenID, OpenID Connect, SAML 1.1, SAML 2.0, Twitter, WebServices, Windows Live, X.509v3, Yahoo
Shibboleth Internet2 OSS Yes Yes Yes SAML 1.1, SAML 2.0
SimpleSAMLphp[74] UNINETT AS OSS Yes Yes OpenID, A-Select, CAS, WS-Federation and OAuth,Facebook,LinkedIn,Twitter, Windows Live, SAML 2
Smartsignin[75] PerfectCloud Commercial Yes Yes SAML 2.0, SAML 1.0, Google, Microsoft365, LDAP, WS-Federation
SMS PASSCODE Multi-factor Authentication[76] SMS PASSCODE Commercial ?
SSO EasyConnect[77] SSO Easy Commercial Yes Yes
SSOgen SSOGEN Corporation Commercial Yes Yes SAML 1.1, SAML 2.0,OAuth2,OpenID Connect,OpenID Provider,RADIUS, LDAP, Multi Factor Authentication.

Cloud SSO Solution for enterprises to protect on-premise applications such as SSOgen for Oracle EBS, SSOgen for PeopleSoft, SSOgen for JDE, and SSOgen for SAP, with a web server plug-in and Cloud SaaS applications with SAML, OpenID Connect integrations.

Symlabs Federated Identity Suite[78] Symlabs Commercial Yes Yes Yes Yes Yes Yes Yes OpenID, A-Select, CAS, WS-Federation and OAuth
Symplified[79] Symplified Commercial Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes SAML 1.1, SAML 2.0, WS-Federation, OpenID, OAuth, XACML, IBM LTPA, Microsoft IWA, 2-Factor, Facebook, Google, Twitter, ABAC / context-based AC
Tivoli Federated Identity Manager[80] IBM Commercial Yes Yes Yes Yes Yes Yes Yes WS-Federation, OpenID, Liberty, InfoCard, Microsoft CardSpace
TrustBind[81] NTT Software Corp Commercial Yes Yes Yes Yes Yes Yes OpenID, ID-WSF
TrustBuilder[82] SecurIT Commercial Yes Yes Yes SAML 2.0, OAuth 2.0, OpenID Connect, Kerberos
Trustelem[83] Trustelem Commercial Yes SAML 2.0, OpenID Connect, WS-Fed, OAuth 2.0, Integrated Windows Authentication, Kerberos, Active Directory, LDAP, FIDO U2F.
USP Secure Entry Server[84] United Security Providers Commercial Yes Yes Yes SAML 2.0, SAML 1.0, Kerberos, NTLM, LDAP, RADIUS, RSA, SuisseID, RBAC, SSO, Tomcat Authenticator, IIS ISAPI Filter, mTAN, PKI/X.509, Reverse Proxy, Multi-Factor, SOAP/REST Connectors, WebService Security, Office365, GoogleApps
Weblogic Oracle Commercial Yes
WSO2[85] wso2 OSS Yes Yes OAuth2, WS-Trust, OpenID
ZXID[86] zxid OSS Yes Yes Yes Yes Yes ID-WSF2, XACML2, WS-Security, XML-DSIG, TAS3
  1. ^ "Kantara Initiative 2011 Q1 SAML 2.0 Full-Matrix Interoperability Testing".
  2. ^ "Liberty Alliance SAML interoperability tests".
  3. ^ "10Duke Identity Provider".
  4. ^ "adAS SSO".
  5. ^ "Aerobase". Aerobase Org.
  6. ^ "Afrilas".
  7. ^ "Asimba".
  8. ^ "AssureBridge".
  9. ^ "Auth0". Auth0. Retrieved 2019-12-12.{{cite web}}: CS1 maint: url-status (link)
  10. ^ "Authentic2".
  11. ^ "Authstack - Identity Access Management (IAM) and Single Sign-On Software". www.buckhill.co.uk. Retrieved 2017-05-15.
  12. ^ "Bitium Single Sign-on".
  13. ^ "CA Federation Manager".
  14. ^ "CAS SAML2 Authentication".
  15. ^ "Secure IT Infrastructure for Online Business Applications | Ceptor". Ceptor. Retrieved 2018-02-26.
  16. ^ "cidaas – European Cloud Identity and Access Management". cidaas. Retrieved 2020-11-21.
  17. ^ "Citrix Open Cloud Access".
  18. ^ "RadiantOne Cloud Federation Service".
  19. ^ "Cloudseal SSO for Java".
  20. ^ "Comfact IDP".
  21. ^ "Connectis".
  22. ^ "Morpho DACS" (PDF).
  23. ^ "Dot Net Workflow cloud and corporate SSO and Federation".
  24. ^ "DirX Access".
  25. ^ "DualShield unified authentication platform".
  26. ^ "9STAR's Elastic SSO Team".
  27. ^ "9STAR's Elastic SSO Enterprise".
  28. ^ "Entrust GetAccess".
  29. ^ "Entrust IdentityGuard".
  30. ^ "EIC".
  31. ^ "EmpowerID".
  32. ^ "API Security Gateway".
  33. ^ "FusionAuth Community Edition".
  34. ^ "GlobalSign SSO". 30 March 2020.
  35. ^ "Open Source Access Management".
  36. ^ "IAM Solutions".
  37. ^ "Horizon App Manager".
  38. ^ "HP IceWall SSO".
  39. ^ "ILANTUS Xpress Sign-On".
  40. ^ "Intel Cloud SSO".
  41. ^ "Ilex".
  42. ^ "Avoco Identity".
  43. ^ "iWelcome".
  44. ^ "JOSSO (Community Edition)".
  45. ^ "JOSSO (Enterprise Edition)".
  46. ^ "Juniper SSL VPN" (PDF).
  47. ^ "Keycloak". JBoss Community.
  48. ^ "Layer 7".
  49. ^ "Larpe".
  50. ^ "LemonLDAP::NG".
  51. ^ "NetIQ Access Manager".
  52. ^ {{ | url=https://www.miniorange.com/ | title=Cloud/On-Premise service platform}}
  53. ^ "NetWeaver Appserver".
  54. ^ "Mobilityguard OneGate". mobilityguard.com. Retrieved 2016-02-20.
  55. ^ "ForgeRock has shuttered the open-source community, and no longer allows new development on their platform under a permissive license". timeforafork. June 1, 2017. Retrieved June 1, 2017.
  56. ^ "Cloud service platform".
  57. ^ "OneLogin Single Sign On".
  58. ^ "OpenAthens LA".
  59. ^ "OpenAthens SP".
  60. ^ "OpenASelect".
  61. ^ "Optimal IdM VIS Federation Services".
  62. ^ "Oracle Identity Federation 11g".
  63. ^ "Pega7". 15 September 2020.
  64. ^ "PhoneFactor".
  65. ^ "PicketLink".
  66. ^ "PingFederate".
  67. ^ "PortalGuard".
  68. ^ "RSA Federated Identity Manager".
  69. ^ "Safewhere*Identify".
  70. ^ "SailPoint IdentityNow".
  71. ^ "Samanage".
  72. ^ "Github/SATOSA". 25 October 2021.
  73. ^ "SecureAuth".
  74. ^ "SimpleSAMLphp".
  75. ^ "Smartsignin Single Sign-on".
  76. ^ "SMS PASSCODE".
  77. ^ "SSO EasyConnect".
  78. ^ Symlabs "Federated Identity Suite". {{cite web}}: Check |url= value (help)
  79. ^ "Symplified".
  80. ^ "Tivoli Federated Identity Manager".
  81. ^ "TrustBind/Federation Manager".
  82. ^ "TrustBuilder".
  83. ^ "Trustelem Cloud SSO | Active Directory and multi-factor authentication". www.trustelem.com. Retrieved 2017-05-15.
  84. ^ "USP Secure Entry Server".
  85. ^ "WSO2".
  86. ^ "ZXID".