This Extension provides valuable insights into the concept of Single Sign-On (SSO) as a centralized authentication method. In this system, an Identity Provider (IdP) plays a crucial role in handling login requests from authorized applications known as Service Providers (SPs).

With SSO, users gain the ability to authenticate themselves across multiple integrated services (SPs) using a single account managed by the IdP. This approach effectively reduces the need for users to remember and manage numerous sets of credentials.

Spirion’s Sensitive Data Manager (SDM) Console supports SSO and is pre-configured to serve as an SP for federated authentication utilizing SAML 2.0. By default, it is set up to work with Microsoft’s Active Directory Federation Services (ADFS) as the IdP. However, it is worth noting that alternative Identity Providers can also be configured to work seamlessly with SDM.

For instance, Shibboleth, an open-source alternative to ADFS, is frequently adopted by higher education institutions as an IdP to facilitate federated SSO. This Extension offers a comprehensive guide to understanding and implementing SSO with Spirion’s Sensitive Data Manager, empowering organizations to enhance security and streamline user access management.

Spirion Products:
Sensitive Data Manager Only

Required Skills & Technology:
Not Applicable

Released: 01/18/2023

Files:
Spirion_EX_Shibboleth_SSO.pdf
attribute-filter.xml
attribute-resolver.xml
idp-metadata.xml