What is SAML?SAML is an abbreviation of Security Assertion Markup Language, which is an XML-based standard for single sign-on (SSO) of web browsers and defined by OASIS . It has been prevalent since 2002. SAML is called security markup language because it is specifically defined to exchange security and identity related information such as authorization and authentication information, etc. Background Its first version arrived in 2002 under the name SAML 1.0 and the last version released in 2002. 2005 under the name SAML 2.0. Another version was released under the name SAML 1.1. Why SAML! Given the emergence of cloud computing and cloud-based identity management providers, the need to implement SAML is imperative. Additionally, with the proliferation of SaaS (Software as a Service) and other web applications, identity management has become a challenge for various businesses. Managing so many usernames and passwords for your intranet, cloud, webmail, HR system, and other resources is nothing but inconvenient, especially when your workforce is huge. This is where SAML is desperately needed. Many hosted service providers support SAML for authentication, including Google Apps, Salesforce.com, Zendesk, and Zoho. Thousands of large enterprises have adopted it as the standard protocol for their communicating identities in their network environments. How SAML works! SAML generally defines three roles, namely Principal (which is normally an end user), Identity Provider (IdP), and Service Provider (SP). A system that supports SAML as a means of authentication is called a service provider (SP). A SP requires the availability of an Identity Provider (IdP). Take for example Google Apps with SAML configured. Google Apps d...... middle of paper ......ord. With a single login, they can access any resources or systems for the rest of the day. • Security — With common password security policies that are centrally managed, SAML is secure. Users do not need to write down their passwords when there is only one to remember. • Cloud Computing: SAML reduces complexity for end users accessing multiple cloud applications. It allows the user to remember a single password and, if necessary, use it once as a strong authentication credential to securely access all cloud applications. • Speed: A redirect to a single browser is enough to securely connect a user to an application. • Reduces aid. office calls — Reduced help desk calls for password resets. • Bring your own device — where Bring your own Device (BYOD) usage is increased, SAML is best suited since multiple accounts are accessible from anywhere and at any time..