Background: In SSOCircle Public IDP we provide client certificates as a mean of strong authentication. For more than 10 years we offer PKI functionality to ease the generation of private/public key pairs as well as generate and enroll X.509 certificates. In the past most browsers supported
Author: Ming Yu This is a step-by tutorial focusing on how to log in with a X.509 certificate to SSOCircle IDP instead of using username password (REM: the process described here is not related to the use of certificates in SAML SSO). The tutorial uses Chrome browser and Windows OS. 1. Log in with your […]
Going deep on Decentralized Identity (DID) and Artificial Intelligence, as they turned out to be the main topics of KuppingerCole European Identity Conference 2019 (EIC19), which was held in Munich from 14th-17th of May 2019. The leading Identity and Access Management event in Europe attracted almost 1.000 visitors and a growing exhibitors area expanding over […]
Technology meets Legal, Standards meets Best Practices, Vision meets Reality. All this happens when KuppingerCole Analysts calls together the Identity Community to meet at the 12th European Identity and Cloud Conference (EIC) in Munich from 15th-18th May 2018. It is the leading Identity and Access Management event in Europe and probably in the world with […]
Starting at 2017/09/24 we are now enforcing quotas and expiration for imported SAML Service Providers as mentioned in the Comparison Pricing List. Default of Expiration for SAML Service Providers is 30 days. From that point on, SSO to the services will not work anymore. The first expiration date for old Service Providers will be 2017/10/24:06:00:00 […]
Many people were asking about doing SSO to Amazon AWS from SSOCircle. Since SSOCircle Public IDP has a common Circle of Trust the Service Provider EntityIDs are shared and must be unique. AWS provides a single SAML Service Provider Metadata file at https://signin.aws.amazon.com/static/saml-metadata.xml for all AWS customers. As the AWS SP is already imported into […]
No new standards, no protocol declared dead – but new compliance directives which have huge impact on business practices and deployed IAM services. The General Data Protection Regulation (GDPR) and the Revised Directive on Payment Services (PSD2) will be applied in 2018 after a two-years transition period. From the importance of establishing a legal identity […]
Relationship Based Access Control (ReBAC) models originate from access control considerations made for Online Social Networks (OSN). In original ReBAC studies User-to-User (U2U) relations determine the access control decision made whenever a user (accessor) tries to access a resource. Policies typically evaluate the type, depth and strength of the U2U relation between the accessor and […]
SSOCircle recently introduces a Graph based identity management system with user manageable access permissions and an entitlement API. Enter ReBAC (Relationship Based Access Control. Add ReBAC to ABAC (Attribute Based Access Control) and RBAC (Role Based Access Control) and get StarBAC. ReBAC can be described by the explicit tracking of relationships between identities themselves and […]
Applies to the Public IDP. Not to our IDPee offerings. Update: Public IDP Metadata will be replaced during a maintenance window at the weekend of 13/14th August 2016. We do not expect downtime but there may be some changes needed at your service provider. SSOCircle Root CA certificate used for client certificate authentication will also […]
