SAML Single Sign-On (SSO) for SkyVault Content Services 1.0.1

You can use Security Assertion Markup Language (SAML) with SkyVault to support Single Sign-On (SSO) across an organization.

SAML standards define an XML-based framework for describing and exchanging security information between an identity provider (IdP) and service provider (SP).

Security information is expressed in the form of portable SAML assertions that applications working across security boundaries can trust.

SkyVault Share uses Web Browser SSO and Single-Logout (SLO) profiles, using the HTTP Post Binding only.

SAML is based on a trust relationship between an IdP (for example, PingFederate or AD FS) and an SP (for example, SkyVault Share) who agree to share authentication information; for example, metadata and configuration information that is required to access services.

SkyVault uses SAML 2.0. See OASIS SAML v2.0 for more information on SAML specifications.

This diagram explains the exchange of information between the service provider (in this case, SkyVault Share), and the identity provider (in this case, PingFederate):