Skip to content Skip to site navigation Skip to service navigation

SAML (Authentication)

An authentication and authorization protocol that powers single-sign-on and identity management

Stanford transitions from WebAuth to SAML 2.0

If you manage a server or application using WebAuth to authenticate users, you can find updates about migration plans and links to technical documentation in the “Get started” section on this page.

In 2018, University IT Technology Training will offer SAML support through SAML2 Open Labs (on January 30 and March 8) and a lecture, Setting up a Stanford Service Provider using Stanford's Federated IdP (SAML2) (on February 21).

SAML (Security Assertion Markup Language) is an Authentication and Authorization protocol that Stanford is employing more and more to power single-sign-on and identity management underlying WebLogin. SAML is part of a coordinated ensemble of technologies that protect the university’s restricted data while enabling not just Stanford people but also trusted colleagues at other institutions to access resources with just one login action. Examples of SAML in use at Stanford include partner-provided services such as Office 365, Google Drive, and Box.

Features

Designed For

  • Current faculty, staff, and students.
  • Departments and workgroups.

Requirements

End users, content managers, and server administrators have different requirements to use SAML-based authentication and authorization:

  • End users need a SUNet ID and password; for access to some resources, a two-step authentication method must be set up.
  • Content managers typically use system (e.g., Drupal) modules or .htaccess files and file system permissions (ACLs) to restrict access to their web pages.
  • Stanford system administrators implement SAML by way of modules and instructions, typically in combination with Shibboleth and Apache.

Data Security

May be used to protect Low, Moderate, and High Risk Data, as defined by the Information Security Office.

Rates

Free of charge

Get Started

Third-party vendors:

Stanford application owners and system administrators:

Get Help

For assistance with SAML, submit a Help request.

Learn More

See Also

Last modified February 20, 2018