Geneva : Microsoft adds SAML 2.0 protocol support

The possibility of a ubiquitous SSO protocol looking so bleak just 2 years ago is all of of a sudden a reality with Geneva providing full support for SAML 2.0 !

Also addressed is a key pain point to do with managing federation metadata between SP's and IDPs : From Don Schmidt's blog on "Harmonized Federation Metadata for WS-Federation and SAML"

A key goal has been to develop a single specification that can support both passive web application and active web service requestors. In the interests of promoting engineering efficiencies for developers, and interoperability enhancements for deployers, the WSFED TC decided to make a substantive change to its federation metadata document structure during the first Public Review cycle. WS-Federation has been revised to take a normative dependency on the SAML 2.0 federation metadata document structure. The original format has been deprecated, although it is supported for backwards compatibility with early implementations. The preferred format must be rooted in either the <md:EntityDescriptor> element or <md:EntitiesDescriptor> element from [Samlv2Meta]. The WS-Federation specification defines extensions for web services constructs (such as Endpoint References) that are required for WS-\* protocols.

As my co-architect, Pat mentions in his blog there are indeed some interesting times ahead in the world of Federation.
Comments:

Post a Comment:
  • HTML Syntax: NOT allowed
About

rajeev

Search

Categories
Archives
« April 2014
SunMonTueWedThuFriSat
  
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
   
       
Today