What Is Federated Identity?

(OneLogin) Federated identity allows authorized users to access multiple applications and domains using a single set of credentials. It links a user’s identity across multiple identity management systems so they can access different applications securely and efficiently.

When organizations implement federated identity solutions, their users can access web applications, partner websites, Active Directory, and other applications without logging in separately every time.

Protocols

• SAML: SAML 2.0 is an open standard for passing authentication and authorization information among three actors, namely, the principal, the service provider and the identity provider. The principal is the user, the service provider is the owner of a web resource, and the identity provider performs identity access management services.
• OAuth: OAuth is an open standard for authorization that grants secure delegated access to applications, devices, application programming interfaces (APIs) and servers via access tokens. OAuth authorizes an application to access your data without giving it access to your credentials.
• OpenID: Based on the OpenID decentralized authentication protocol, OpenID Connect provides an authentication layer atop OAuth 2.0. It addresses the lack of an authentication mechanism in OAuth, which is a weakness when it comes to authorizing sensitive transactions such as payments.
• SCIM: System for Cross-Domain Identity Management (SCIM) is an open standard protocol for automating the exchange of user identity information between identity domains and IT systems.

Links

• OAuth vs SAML vs OpenID: Learn the Differences between Them
• How Does Federated Identity Work?
• What’s the Difference Between OAuth, OpenID Connect, and SAML?
• Fortinet – SAML vs OAuth vs OIDC OpenID
• Which connection type? SCIM, SAML, OAuth or OpenID
• SCIM synchronization with Azure Active Directory
• SAML vs. OAuth: Comparison and Differences
• Auth0 – Intro to IAM
• OpenID Foundation
• SAML Wiki
• OAuth 2.0

Enjoy!!!