SAML (Security Assertion Markup Language) is an Authentication and Authorization protocol that Stanford is employing more and more to power single-sign-on and identity management underlying WebLogin. SAML is part of a coordinated ensemble of technologies that protect the university’s restricted data while enabling not just Stanford people but also trusted colleagues at other institutions to access resources with just one login action. Examples of SAML in use at Stanford include partner-provided services such as Office 365, Google Drive, and Box.
- Works across organizations and supports federation.
- Supports multi-factor authentication protocols (e.g., Stanford Two-Step Authentication).