Overview
IntelligenceBank provides two methods for authentication using the SAML protocol: two legged, where the user accesses the IB server and is redirected to a SAML server for authentication, and one-legged, where the user is already validated on a SAML server and is automatically logged into IntelligenceBank. The two processes are outlined below.
Two Legged Authentication
Authentication Process
- In this process the user first accesses the IntelligenceBank server.
- If the user is to be authenticated remotely then the user is re-directed to the SAML server configured for the company
- Once the user has successfully validated on the SAML server she is redirected back to the IntelligenceBank server with a SAML assertion and user information.
- The IntelligenceBank server verifies the SAML assertion and user information and if successful logs the user in and directs the user to the home page.
One Legged Authentication
Authentication Process
- In this process the user first logs in and accesses a server on her intranet. This process may differ according to the requirements of each company.
- Upon clicking on a specific link she is redirected to the IntelligenceBank server along with a SAML assertion and relevant user information.
- The IntelligenceBank server verifies the SAML assertion and user information and if successful logs the user in and directs the user to the home page.
Configuration
To use an external SAML server as an authentication source for accessing IntelligenceBank, the the configuration screen is provided in the Authenticators area of IntelligenceBank. See:
Comments
0 comments
Please sign in to leave a comment.