on 07-03-2008 9:58 AM
Hi Experts,
What is meant by SAML?
Why do we need it?
I have to use SAML in PI 7.1. Could you please provide the details, how to do the configuration?
Thanks & Regards
Sara
Let me try to answer in brief
SAML: It stands for Security Assertion Markup Language, it is an XML standard which is used to exchange security information between a service provider and an identity provider.
Why do we need it?
We have a concept called Principal Propagation in PI 7.1, Principal Propagation allows to securely pass the identity of a user from a sender application to a receiver application. There are various adapters and protocols which support the Principal Propagation and one protocol amongst them is the Webservice Reliable Messaging Protocol or WS-RM. Principal Propagation solution for WS-RM protocol is based on SAML and uses the SAML assertions.
I have to use SAML in PI 7.1. Could you please provide the details, how to do the configuration?
There are some video recordings available for configuration and you can view the same as below,
[Configure a Trust Relationship between Sender and Integration Server:|https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/30b14f4d-1326-2a10-f8b8-d523af317a27] Exchange sender's digital certificate between sender and Integration Server.
[Configure Trusted Issuer:|https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/90679c20-1426-2a10-9a9a-ae88529ec66e] Map user in the Integration Server, and specify issuer. Default issuer is the sender's system ID, default attester is the sender's certificate.
[Configure Sender Agreement and Sender Communication Channel:|https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/c01bcb9e-1426-2a10-7087-c737d8efa366] In Integration Directory, select SAML Sender Vouches Assertion as authentication method.
Sameer
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Sara,
Refer this blog for purpose of SAML:
Please, refer the link below for SAML configuration.
http://help.sap.com/saphelp_nw04/helpdata/en/2d/d1f1285432da4d8ff121b47363e54d/frameset.htm
http://help.sap.com/saphelp_nw04s/helpdata/en/3e/69d8dcd8d08f4d8f864be86404056f/frameset.htm
Usage in PI 7.1:
https://www.sdn.sap.com/irj/sdn/wiki?path=/display/xi/capabilityandEnhancementsofSAPNetWeaverProcessIntegration7.1&
Regards,
Vinod.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
HI Sara,
SAML : Security Assertion Markup Language
Security Assertion Markup Language (SAML) is an XML-based standard for exchanging authentication and authorization data between security domains, that is, between an identity provider (a producer of assertions) and a service provider (a consumer of assertions). SAML is a product of the OASIS Security Services Technical Committee.
The single most important problem that SAML is trying to solve is the Web Browser Single Sign-On (SSO) problem. Single sign-on solutions are abundant at the intranet level (using cookies, for example) but extending these solutions beyond the intranet has been problematic and has led to the proliferation of non-interoperable proprietary technologies. SAML has become the definitive standard underlying many web Single Sign-On solutions in the enterprise identity management problem space.
SAML assumes the principal (often a user) has enrolled with at least one identity provider. This identity provider is expected to provide local authentication services to the principal. However, SAML does not specify the implementation of these local services; indeed, SAML does not care how local authentication services are implemented (although individual service providers most certainly will).
Thus a service provider relies on the identity provider to identify the principal. At the principal's request, the identity provider passes a SAML assertion to the service provider. On the basis of this assertion, the service provider makes an access control decision.
pls do chk thi slinks
if found worth pls do the req
Thanx
Sampath
Edited by: venkata sampath on Jul 3, 2008 11:08 AM
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
SAML ( Security Assertion Markup Language )
Power of SAML in SAP NetWeaver
Implementation Guide Planning to Shelf Optimization Integration
Getting Started: Security Assertion Markup Language (SAML)
regrads
kummari
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
93 | |
10 | |
10 | |
9 | |
9 | |
7 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.