User Authentication Through SAML

Most of the authentication systems supported by WISEflow are using the SAML SSO protocol.

SAML works by sending information about users such as logins and attributes from the identity provider to WISEflow.

WISEflow supports different types of authentication systems. This article will describe how a user is authenticated through the authentication system.

API_flow_charts_for_service_centre_-_Authentication__1_.png

Example

When a user from University of UNIwise logs into WISEflow, WISEflow checks the user credentials with the identity provider. If the identity provider recognises the user credentials, the user is authorised and logged in.

The process of authentication can be summarised in five steps:

  1. A user, Mr. WISEflow, logs into WISEflow.
  2. WISEflow will send Mr. WISEflows login credentials to the identity provider.
  3. The identity provider will verify Mr. WISEflows credentials with credentials on known users.
  4. If there is a match, the identity provider will send the authentication back to WISEflow.
  5. Mr. WISEflow is logged in to WISEflow.
Simple SAML Test Procedure

In order to determine whether all of the required attributes are available to set up SSO as a login method, a SimpleSAML test has to be conducted. The steps for the test procedure are detailed below. Please also review the articles in this section to determine which mandatory attributes need to be released.

SimpleSAML Test Procedure:

  • Go to: https://europe.wiseflow.net/simplesaml
  • Select pane Authentication
  • Select Test authentication sources
  • Select europe_wayf
  • Search for your institution and select the relevant IDP
  • Enter your normal login information
  • Send a screen grab of the metadata that appears after Login to UNIwise.
Was this article helpful?
0 out of 0 found this helpful

Articles in this section