Can IAM works as a SAML IdP? #591
Answered
by
rmiccoli
zhangxt-ihep
asked this question in
Q&A
-
|
Hello, I have some service only accept SAML assertions to get authorization. I think IAM can offer JWT as authorization tokens, but can it works as a SAML IdP so that my SAML-only service can get authorization? Thanks! |
Beta Was this translation helpful? Give feedback.
Answered by
rmiccoli
Mar 30, 2023
Replies: 1 comment
-
|
Hi Xuantong, Indigo IAM is an OpenId Connect Provider that can also act as a SAML SP, but not as a SAML IdP. For this reason, you need an OIDC-to-SAML proxy to integrate IAM with your SAML-only service. Roberta |
Beta Was this translation helpful? Give feedback.
0 replies
Answer selected by
zhangxt-ihep
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Hi Xuantong,
Indigo IAM is an OpenId Connect Provider that can also act as a SAML SP, but not as a SAML IdP. For this reason, you need an OIDC-to-SAML proxy to integrate IAM with your SAML-only service.
In the context of the ESCAPE project a SATOSA Proxy has been chosen to satisfy a similar use case.
Roberta