Security Assertion Markup Language (SAML) is a set of specifications that encompasses the XML-format for security tokens containing assertions to pass information about a user and protocols and profiles to implement authentication and authorization scenarios. This article has a focus on software and services in the category of identity management infrastructure, which enable building Web-SSO solutions using the SAML protocol in an interoperable fashion. Software and services that are only SAML-enabled do not go here.
SAML actors are Identity Providers (IdP), Service Providers (SP), Discovery Services, ECP Clients, Metadata Services, or Broker/IdP-proxy. This table shows the capability of products according to Kantara Initiative testing.[1][2] Claimed capabilities are in column "other". Each mark denotes that at least one interoperability test was passed. Detailed results with product and test procedure versions are available at the Kantara/Liberty site given below.
NOTE: This table represents a snapshot over time roll up of the most recent product test results (multiple testing rounds). Please note that some products features and abilities may have been updated since they were last tested. Please check the website information of the originating product for the latest features and updates.
Product Name | Project/Vendor | License | Kantara-certified Interoperability | Other Features | |||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
rowspan="2" Script error: No such module "Vertical header". | rowspan="2" Script error: No such module "Vertical header". | rowspan="2" Script error: No such module "Vertical header". | rowspan="2" Script error: No such module "Vertical header". | rowspan="2" Script error: No such module "Vertical header". | rowspan="2" Script error: No such module "Vertical header". | rowspan="2" Script error: No such module "Vertical header". | Roles | Protocols | |||||||||
Script error: No such module "Vertical header". | Script error: No such module "Vertical header". | Script error: No such module "Vertical header". | Script error: No such module "Vertical header". | Script error: No such module "Vertical header". | Script error: No such module "Vertical header". | Script error: No such module "Vertical header". | |||||||||||
10Duke Identity Provider[3] | 10Duke | Commercial | SAML 1.1, SAML 2.0, OAuth 2, OpenID, LDAP, Federation | ||||||||||||||
adAS SSO[4] | PRiSE | OSS | SAML 2.0, SAML 1.0, Google, Microsoft365, Facebook, Twitter, Kerberos, LDAP, Federation, OAuth2, OpenID Connect, CAS v1, CAS v2, PAPI, OpenID | ||||||||||||||
ADFS 1.x | Microsoft | Commercial | WS-Federation, WS-Trust, SAML 1.0 | ||||||||||||||
ADFS 2.0 | Microsoft | Commercial | WS-Federation, WS-Trust, SAML 1.1/2.0 | ||||||||||||||
ADFS 2.1 | Microsoft | Commercial | WS-Federation, WS-Trust, SAML 2.0 | ||||||||||||||
ADFS 3.0 | Microsoft | Commercial | WS-Federation, WS-Trust, SAML 2.0, OAuth2 | ||||||||||||||
ADFS 4.0 | Microsoft | Commercial | WS-Federation, WS-Trust, SAML 2.0, OAuth2, OpenID Connect | ||||||||||||||
Aerobase | Aerobase | OSS | Integrated SSO and IDM for browser apps and RESTful web services. Built on top of the OAuth 2.0, OpenID Connect, JSON Web Token (JWT) and SAML 2.0 specifications[5] | ||||||||||||||
Afrilas[6] | Able - AXS Guard | Commercial | SAML 2.0 Strong Authentication without usernames | ||||||||||||||
Asimba[7] | Asimba.org | OSS | (Fork of OpenASelect) | ||||||||||||||
AssureBridge SAMLConnect[8] | AssureBridge | Commercial | SAML 1.1, SAML 2.0, OpenID, WS-Federation, Kerberos, Radius, X509, LDAP | ||||||||||||||
Auth0[9] | Auth0 | Commercial | OAuth2, OpenID, SAML 1.1, SAML 2.0, WS-Federation, LDAP | ||||||||||||||
Authentic2[10] | Entrouvert | OSS | OpenID 1&2, CAS 1&2, OAuth2, LDAP 2&3, PAM, RADIUS, OATH, Kerberos, X509 | ||||||||||||||
AuthStack[11] | Buckhill | Commercial | SAML 1.0, SAML 1.1, SAML 2.0, LDAP, Kerberos, X509, RADIUS, OAuth2, SOAP/REST API | ||||||||||||||
Azure Active Directory | Microsoft | Commercial | SAML 2.0, WS-Federation, Kerberos Constrained Delegation, OAuth 2.0, OpenID Connect | ||||||||||||||
BIG-IP Access Policy Manager | F5 Networks | Commercial | SAML 2.0 | ||||||||||||||
Bitium[12] | Bitium | Commercial | SAML, SAML 2.0 | ||||||||||||||
CA Single Sign-On[13] | CA | Commercial | SAML 1.0/1/1/2.0, OAuth2, OpenID, WS-Federation | ||||||||||||||
Central Authentication Server (CAS)[14] | Apereo Foundation | Open source | SAML 2.0, OAuth2, OpenID, WS-Federation | ||||||||||||||
Centrify DirectControl | Centrify | Commercial | SAML, OpenID, OAuth, WS-*, LDAP, Kerberos | ||||||||||||||
Ceptor[15] | Ceptor | Commercial | SAML 1.1/2.0, OAuth 2.0, WS-Federation, OpenID Connect, Kerberos | ||||||||||||||
cidaas[16] | cidaas by Widas ID GmbH | Commercial | SAML 2.0, OAuth2, OpenID Connect | ||||||||||||||
Citrix Open Cloud[17] | Citrix | Commercial | SSO Middleware, native service connectors | ||||||||||||||
Cloud Identity Manager | McAfee | Commercial | SAML 2, OpenID, OAuth, XACML, LDAP v3, JM | ||||||||||||||
Cloud Federation Service[18] | Radiant Logic | Commercial | SAML 2.0, WS-Federation, OAuth 2.0, OpenID | ||||||||||||||
Cloudseal[19] | Cloudseal | SaaS | |||||||||||||||
Cognito[20] | Amazon | Commercial | SAML 2.0 | ||||||||||||||
Comfact IDP[21] | Comfact | Commercial | |||||||||||||||
Signicat[22] | Signicat | Commercial | |||||||||||||||
Corto project home | GÉANT | OSS | |||||||||||||||
DACS[23] | Safran Identity & Security | Commercial | SSO, OpenID Connect, OATH & OCRA, SMS, X509v3 Certificate, eID card, FIDO UAF, LDAP/AD, multi-factor | ||||||||||||||
Dot Net Workflow[24] | The Dot Net Factory | Commercial | WS*-, WS-Federation, WS-Trust, OpenID, OAuth 2.0, Facebook, LinkedIn, Twitter, Yahoo, Windows Live (MSN) | ||||||||||||||
DirX Access[25] | Atos/Siemens | Commercial | |||||||||||||||
DualShield[26] | Deepnet Security | Commercial | SAML 2.0 | ||||||||||||||
Elastic SSO Team[27] | 9STAR | Commercial | SAML 2.0 SAML 1.1 | ||||||||||||||
Elastic SSO Enterprise[28] | 9STAR | Commercial | SAML 2.0 SAML 1.1 | ||||||||||||||
ESOE | Queensland University of Technology | OSS | |||||||||||||||
Entrust GetAccess[29] | Entrust | Commercial | SAML 1.0, SAML 1.1, SAML 2.0 | ||||||||||||||
Entrust IdentityGuard[30] | Entrust | Commercial | SAML 2.0, OpenID | ||||||||||||||
EIC[31] | Ericsson | Commercial | |||||||||||||||
EmpowerID[32] | The Dot Net Factory | Commercial | WS*-, WS-Federation, WS-Trust, OpenID, OAuth 2.0, Facebook, LinkedIn, Twitter, Yahoo, Windows Live (MSN) | ||||||||||||||
Evidian Web Access Manager | Evidian | Commercial | SAML 1.1, SAML 2.0, OpenID Connect, CAS 1&2, OAuth2, LDAP v3, RADIUS, OATH, Kerberos, X509, Microsoft365, Google, Multi-factor, SSO, extended integration functionalities, Federation | ||||||||||||||
Fluig Identity | TOTVS | Commercial | SAML 2.0 | ||||||||||||||
Forum Sentry[33] | Forum Systems | Commercial | WS-Federation, WS-Trust, SAML 2.0, SAML 1.1, OAuth 1.0.a. OAuth 2, OpenID Connect | ||||||||||||||
Fugen Cloud ID Broker | Fugen Solutions | Commercial | SAML 1.1, SAML 2.0, WS-Federation, WS-Trust, OpenID, and OAuth | ||||||||||||||
FusionAuth[34] | FusionAuth | Commercial | SAML 2.0, OIDC, OAuth, LDAP | ||||||||||||||
GlobalSign SSO | GMO GlobalSign | Commercial | SAML 2.0, ETSI MSS 102 204, TUPAS, WS-Federation, OpenID | ||||||||||||||
Gluu Server[36] | Gluu | OSS | OpenID Connect, UMA, RADIUS, LDAP, FIDO, OAuth | ||||||||||||||
Hitachi ID Identity and Access Management Suite[37] | Hitachi ID Systems, Inc. | Commercial | SAML 2.0 | ||||||||||||||
Horizon App Manager[38] | VMware | Commercial | ? | ||||||||||||||
HP IceWall SSO[39] | HP | Commercial | SAML 2 | ||||||||||||||
ILANTUS Sign On Express[40] | Ilantus | Commercial | SAML 2 | ||||||||||||||
Intel Cloud SSO[41] | Intel | Commercial | SAML 2, OpenID, OAuth | ||||||||||||||
Ilex Sign&go[42] | ILEX | Commercial | WS-Federation, WS-Trust, SAML 2.0, SAML 1.0, Shibboleth, CAS, Google, Microsoft365, Facebook, Kerberos, LDAP | ||||||||||||||
iSAML[43] | Avoco | Commercial | SAML 2, WS-Trust, OpenID | ||||||||||||||
iWelcome[44] | iWelcome | Commercial | SAML 2, SAML 1.0, WS-Trust, Kerberos, OAuth2, Facebook, google, includes provisioning from-to on-Prem, AD, Multi-factor, extended integration functionalities | ||||||||||||||
JOSSO (Community Ed.)[45] | josso.org | OSS | SAML2, OAuth2, WS-Trust, SPMLV2, Kerberos, JOSSO1 | ||||||||||||||
JOSSO (Enterprise Ed.)[46] | Atricore | Commercial | SAML2, WS-Fed, OpenID Connect, OAuth2, WS-Trust, SPMLV2, Kerberos, JOSSO1 | ||||||||||||||
Juniper SSL VPN[47] | Juniper Networks | Commercial | |||||||||||||||
Keycloak | JBoss | OSS | Integrated SSO and IDM for browser apps and RESTful web services. Built on top of the OAuth 2.0, OpenID Connect, JSON Web Token (JWT) and SAML 2.0 specifications[48] | ||||||||||||||
Layer 7[49] | SecureSpan Gateway | Commercial | PDP/PEP, Auth2, SAML 1.1, SAML2, ABAC, OpenID Connect, XML Firewall | ||||||||||||||
Larpe[50] | Entrouvert | OSS | SAML, OpenID, CAS, OAuth | ||||||||||||||
LemonLDAP::NG[51] | LemonLDAP::NG | OSS | SSO, WS-Federation, CAS, OpenID-Connect, SAML-2, Twitter, Protocol proxy | ||||||||||||||
LoginRadius | LoginRadius | Commercial | Web SSO, Federation SSO, SAML, OAuth, OIDC, WS-Federation, JWT | ||||||||||||||
MicroFocus (NetIQ) Access Manager[52] | NetIQ (formerly Novell) | Commercial | + SP Broker |
WS-Security, WS-Federation, WS-Trust, SAML 1.1 / 2.0, Liberty, Single Sign-on, RBAC, CardSpace, OAuth 2.0, OpenID, STS. Includes out of the box integration with cloud and social media providers (Office 365, Windows Live (MSN), Google, Facebook, Salesforce, Amazon web services and 200+ preconfigured connections to SaaS providers etc.) Integration for Advanced Authentication Framework | |||||||||||||
miniOrange | miniOrange | Commercial | + Identity Broker |
SAML 2.0, OAuth2, OpenID Connect, WS-Fed | |||||||||||||
NetWeaver Appserver[53] | SAP | Commercial | ? | CAS, OpenId, Twitter | |||||||||||||
OneGate[54] | MobilityGuard | Commercial | SAML 1.1, SAML 2.0 | ||||||||||||||
OpenAM | Open Identity Community [1], ForgeRock (ex. Sun) until 2016[55] | CDDL | OpenID Connect, OAuth2, SAML 2.0, SAML 1.1, WS-Federation, WS-Trust, XACML, Liberty, Kerberos, Facebook, Google, Windows Live (MSN) | ||||||||||||||
Okta[56] | Okta | Commercial | WS-Federation, WS-Trust, SAML 2.0, OAuth2, OpenID Connect | ||||||||||||||
OneLogin[57] | OneLogin | Commercial | SAML, WS-Federation, Kerberos, OAuth, OpenID | ||||||||||||||
OpenAthens LA[58] | eduserv | Commercial | |||||||||||||||
OpenAthens SP[59] | eduserv | Commercial | |||||||||||||||
Open Select[60] | OpenASelect.org | OSS | OAuth (project continues as asimba) | ||||||||||||||
Optimal IdM VIS Federation Services[61] | Optimal IdM | Commercial | + Proxy, SSO | WS-Federation, WS-Trust, SAML 1.x, SAML 2.0, OAuth2, OpenID Connect, SCIM, Facebook, Twitter, LinkedIn, Google, IWA, X509, Kerberos, LDAP, Office 365, RADIUS, MFA (Push, SMS, Email, Voice, TOTP, U2F, Radius) | |||||||||||||
Oracle Identity Federation 11g[62] | Oracle | Commercial | WS-Federation, SAML 1.x, SAML 2.0, OpenID 2.0 | ||||||||||||||
Pega 7 Platform[63] | Pegasystems Inc. | Commercial | SAML 2.0, OAuth, WS-Trust, LDAP | ||||||||||||||
PhoneFactor[64] | PhoneFactor, Inc | Commercial | |||||||||||||||
PicketLink[65] | JBoss Community | OSS | OpenID, A-Select, CAS, XACML | ||||||||||||||
PingFederate[66] | Ping Identity | Commercial | SAML 1.1, SAML 2.0, WS-Federation, WS-Trust, WS-Security, OAuth, OpenID Connect, OpenID, SCIM, Facebook, Twitter, LinkedIn, Google, Windows Live, Kerberos, IWA, X.509, LDAP, RADIUS, 3rd Party MFA | ||||||||||||||
Plurilock AI[67] | Plurilock | Commercial | SAML 1.1, SAML 2.0, FIDO2, OTP, DEFEND[68] | ||||||||||||||
PortalGuard[69] | PistolStar, Inc. | Commercial | SAML 2, LDAP v3, XML-DSIG, SSO Middleware | ||||||||||||||
RSA Federated Identity[70] | RSA | Commercial | Facebook, OpenID, LinkedIn, Twitter, Windows Live | ||||||||||||||
SAASPASS | SAASPASS | Commercial | WS-Federation, WS-Trust, SAML 2.0, OAuth2, OpenID Connect, LDAP | ||||||||||||||
Safewhere*Identify[71] | Safewhere | Commercial | SAML 2.0, WS-Federation, WS-Trust, OAuth 2.0, multi-factor, OpenID Connect, Facebook, LinkedIn, Twitter, LiveID, Google, LDAP | ||||||||||||||
SailPoint IdentityNow[72] | SailPoint | Commercial | SAML 1.1, SAML 2.0, OAuth2, Kerberos, WS-Federation | ||||||||||||||
Samanage[73] | Samanage | Commercial | Enterprise-to-cloud SSO Middleware | ||||||||||||||
SATOSA[74] | SATOSA | OSS | Proxy between SAML2, OpenID Connect and OAuth2 | ||||||||||||||
SecureAuth[75] | SecureAuth Corp. | Commercial | 2-Factor, IBM LTPA, Facebook, Google, LinkedIn, Microsoft FBA, Microsoft IWA, OAUTH, OpenID, OpenID Connect, SAML 1.1, SAML 2.0, Twitter, WebServices, Windows Live, X.509v3, Yahoo | ||||||||||||||
SecureSSO[76] | SurePassID | Commercial | WS-Federation, WS-Trust, SAML 2.0, OAuth2, OpenID Connect, O365, SCADA - cloud & on-prem | ||||||||||||||
Shibboleth | Internet2 | OSS | SAML 1.1, SAML 2.0 | ||||||||||||||
SimpleSAMLphp[77] | UNINETT AS | OSS | OpenID, A-Select, CAS, WS-Federation and OAuth,Facebook,LinkedIn,Twitter, Windows Live, SAML 2 | ||||||||||||||
Smartsignin[78] | PerfectCloud | Commercial | SAML 2.0, SAML 1.0, Google, Microsoft365, LDAP, WS-Federation | ||||||||||||||
SMS PASSCODE Multi-factor Authentication[79] | SMS PASSCODE | Commercial | ? | ||||||||||||||
SSO EasyConnect[80] | SSO Easy | Commercial | |||||||||||||||
SSOgen | SSOGEN Corporation | Commercial | SAML 1.1, SAML 2.0,OAuth2,OpenID Connect,OpenID Provider,RADIUS, LDAP, Multi Factor Authentication.
Cloud SSO Solution for enterprises to protect on-premise applications such as SSOgen for Oracle EBS, SSOgen for PeopleSoft, SSOgen for JDE, and SSOgen for SAP, with a web server plug-in and Cloud SaaS applications with SAML, OpenID Connect integrations. | ||||||||||||||
Symlabs Federated Identity Suite[81] | Symlabs | Commercial | OpenID, A-Select, CAS, WS-Federation and OAuth | ||||||||||||||
Symplified[82] | Symplified | Commercial | SAML 1.1, SAML 2.0, WS-Federation, OpenID, OAuth, XACML, IBM LTPA, Microsoft IWA, 2-Factor, Facebook, Google, Twitter, ABAC / context-based AC | ||||||||||||||
Tivoli Federated Identity Manager[83] | IBM | Commercial | WS-Federation, OpenID, Liberty, InfoCard, Microsoft CardSpace | ||||||||||||||
TrustBind[84] | NTT Software Corp | Commercial | OpenID, ID-WSF | ||||||||||||||
TrustBuilder[85] | SecurIT | Commercial | SAML 2.0, OAuth 2.0, OpenID Connect, Kerberos | ||||||||||||||
Trustelem[86] | Trustelem | Commercial | SAML 2.0, OpenID Connect, WS-Fed, OAuth 2.0, Integrated Windows Authentication, Kerberos, Active Directory, LDAP, FIDO U2F. | ||||||||||||||
USP Secure Entry Server[87] | United Security Providers | Commercial | SAML 2.0, SAML 1.0, Kerberos, NTLM, LDAP, RADIUS, RSA, SuisseID, RBAC, SSO, Tomcat Authenticator, IIS ISAPI Filter, mTAN, PKI/X.509, Reverse Proxy, Multi-Factor, SOAP/REST Connectors, WebService Security, Office365, GoogleApps | ||||||||||||||
Weblogic | Oracle | Commercial | |||||||||||||||
WSO2[88] | wso2 | OSS | OAuth2, WS-Trust, OpenID | ||||||||||||||
ZITADEL[89] | ZITADEL | OSS | SAML 2.0, OpenID Connect 1.0, OAuth 2.0, FIDO2, OTP, U2F | ||||||||||||||
ZXID[90] | zxid | OSS | ID-WSF2, XACML2, WS-Security, XML-DSIG, TAS3 |
Libraries and toolkits are used by developers to integrate applications and services into SAML federations or to build their own SAML-actors like IdPs.
Libraries and Toolkits | Organization | Licence | Purpose and Language bindings |
---|---|---|---|
Australian Access Federation[91] | Australian Access Federation | OSS | Metadata Registry based on former work by SWITCH |
ComponentSpace[92] | ComponentSpace | Commercial | SAML libraries for ASP.NET and ASP.NET Core applications |
Corto[93] | WAYF | OSS | SAML2 proxy, virtual IdP, user consent |
DjangoSAML2[94] | GitHub | OSS | SAML2 application for Django, using PySAML2 underneath |
EmpowerID IdP & SP Kit[95] | Dot Net Factory | Commercial | IdP and SP Kit, .NET, REST, and SOAP-based integration kit to SAML-enable applications |
FEMMA[96] | SourceForge | OSS | Workaround for the ADFS limitation of a single EntityID per XML infoset |
Firefox ECP Plugin[97] | Openliberty | OSS | Firefox extension for compliance with SAML ECP |
FLOG F-Ticks Vizualization[98] | SUNET | OSS | Parse and chart F-Ticks for webSSO and Eduroam (sample site: http://flog.sunet.se/) |
Jagger[99] | HEAnet | OSS | Metadata and Federation data manager; Shibboleth IDP GUI |
JAKOB[100] | WAYF | OSS | Backchannel attribute collector |
JANUS[101] | WAYF | OSS | Metadata Registry for hub-and-spoke federations based on SimpleSAMLphp; includes self-service |
Jitbit ASP.NET SAML lib[102] | GitHub | OSS | SAML 2.0 "consumer" component for ASP.NET |
Lasso[103] | Entrouvert | OSS | SAML-Library: C/C++, Python, Java, Perl, PHP |
LightSAML core[104] | OSS | SAML-Library: PHP | |
OIOSAML 2.0 Toolkit[105] | Danish IT and Telekom Agency | OSS | SP Framework: Java, .NET,[106] PHP (Documentation see OIOSAML.java) |
OmniAuth-Shibboleth[107] | OneLogin | OSS | SAML-Library: ASP/.NET, Java, PHP, Python, Ruby |
OneLogin[108] | OneLogin | OSS | SAML-Library: ASP/.NET, Java, PHP, Python, Ruby |
OpenConext[109] | SURFnet | OSS | Service Provider Proxy and Hub-and-Spoke federation middleware, includes SAML proxy and central group management for creating collaboration platforms |
OpenSAML[110] | Internet2 | OSS | SAML-Library: C++, Java |
MET[111] | TERENA | OSS | gathers and shows information about federations (mostly about SPs and IdPs) |
Mujina[112] | SURFnet | OSS | SAML test actors that can be dynamically configured using a REST interface |
PAC4J-SAML[113] | OSS | SAML Service Provider Library (and other authentication mechanisms) | |
PEER[114] | GÉANT | OSS | SAML Metadata Registry |
PHPH[115] | WAYF.dk | OSS | SAML Metadata Processor |
Ping Identity[116] | Ping Identity | Commercial | Java, .NET, PHP and language neutral integration kits to SAML-enable applications |
PySAML2[117] | GitHub | OSS | SAML-Library: Python |
Python-SAML | OneLogin | OSS | SAML-Library: Python |
Pysfemma[118] | GitHub | OSS | automate membership configuration of an ADFS STS in a SAML2 based Identity Federation |
PyFF[119] | SUNET | OSS | SAML Metadata Processor |
Raptor[120] | Jisc | OSS | toolkit to enable Shibboleth IdP statistics analysis |
SAML Metadata Aggregator[121] | NORDUnet | OSS | Aggregates single metadata files and provides MDX webservice |
SAML Tracer (Firefox addon)[122] | UNINETT AS | OSS | Firefox Plug-In to trace SAML messages |
SecureBlackbox[123] | /n software | Commercial | The component that implements SAML in client apps, which need to use service providers, or can be used to create your own service and identity providers |
SpringSecurity SAML[124] | SpringSource | OSS | SAML-enable applications based on Spring framework |
Switch GMT[125] | SWITCH-AAI | OSS | Group Management Tool for Shibboleth |
Ultimate SAML[126] | ComponentPro | Commercial | SAML 1.1 and 2.0 Libraries for .NET |
Webisoget[127] | OSS | Command-line Tool to fetch a SSO-protected page including Shibboleth-Login | |
ZXID[128] | zxid | OSS | C, other lang using swig.org |
This section lists public services such as identity and attribute providers, metadata and test services, but *not* SAML-enabled web-applications and cloud services.
Service | Organization | Purpose |
---|---|---|
9STAR[129] | 9STAR | 9STAR Managed Services for Shibboleth/SAML SSO On-Premises or Cloud |
9STAR[130] | 9STAR | 9STAR Shibboleth/SAML SSO Support Services |
Acrot A-OK[131] | Arcot | IdP (+ Fraud detection) |
eduTEAMs[132] | SURFnet | Federation enabled Group management service which acts as an Attribute Authority for group relations |
Federation Lab[133] | GÉANT | Test-SP, metadata registry, test tools |
Feide OpenIdP[134] | UNINETT AS | IdP that allows any user to register, and any SP to connect |
Gazelle IHE validator[135] | Gazelle | SAML Assertion Validation |
Gluu On-Prem Managed Service[136] | Gluu | IdP for SAML and OpenID Connect-enabled cloud services |
Identity Hub[137] | Entrouvert | Free IdP; Any user and any SP |
OneLogin SSO[138] | OneLogin | IdP for SAML- and OpenID-enabled cloud services |
REEP[139] | GÉANT | Public metadata registry |
PhoneFactor[140] | PhoneFactor Inc. | IdP/cloud SSO |
PingOne[141] | Ping Identity | Cloud Access and Application Provider Services for IdPs and SPs |
SAASPASS | SAASPASS | IdP, IdM, Multi-Protocol STS (multiple claims based integrations including SAML 1.1, 2.0 SP SSO, 2.0 IdP SSO, OpenID Connect, .NET, CA SiteMinder and others |
SamlComponent.net[142] | SamlComponent | SAML Resources for Developers |
samlidp.io[143] | Kitek Media Kft. | SAML Identity Provider as a Service |
SecureAuth[144] | SecureAuth Corp. | IdP, IdM, Multi-Protocol STS (multiple claims based integrations including SAML 1.1, 2.0 SP SSO, 2.0 IdP SSO, OpenID, .NET, CA SiteMinder and others |
SSOCircle[145] | SSOCircle | Free IdP |
Testshib[146] | Internet2 | IdP and SP for testing |
UnitedID[147] | United ID Services | Free IDP service |
Verizon Web Access Management[148] | Verizon Business | IdP |
ZXID[149] | zxid.org | Free IdP |
{{ | url=https://www.miniorange.com/ | title=Cloud/On-Premise service platform}}
Original source: https://en.wikipedia.org/wiki/SAML-based products and services.
Read more |