U.S. +1 (312) 214 3570  |  E.U +34 (91) 656-9266
Contact Us

Identity Provider (IdP) :: Federated Identity Suite

A Central Element For Federated Identity Solutions

Symlabs Identity Provider (IdP) is the component of Symlabs Federated Identity Suite that delivers a full-featured, ready-to-deploy, multi-protocol, standards-based Identity Provider. It offers essential capabilities for Service Providers (SPs) such as user authentication information for Single Sign-On (SSO), or the federation and session information and management that provides defederation and Single Log-Off (SLO) capabilities. It can also be used as a portal, allowing users to log on to any service.
 
Symlabs Identity Provider (IdP) supports all aspects of the federation framework. It can act as an attribute authority to send attribute-based identity information or as an authentication authority offering a query interface for issued statements, and it can also be configured to relay its authentications in IdP Proxy mode.
 

Symlabs Identity Provider (IdP) is a fully functional Web Services Framework Authentication Service supporting various methods for Liberty User Agents and Device (LUAD) authentication, and includes the Symlabs Discovery Service (DS) that can be deployed standalone or integrated with the IdP.

Support For A Wide Range Of Industry Standards

The specifications supported for Single Sign-On plus Session and Federation Management include Liberty ID-FF 1.2, OASIS SAML 2.0 full extended profile, and WS-Federation 1.0 (SSO, SLO).
 

Symlabs Identity Provider (IdP) also supports Liberty ID-WSF 1.1 and Liberty ID-WSF 2.0 specifications for the secure exchange of identity information, including Discovery Service, Discovery Bootstrap, Authentication Service, and Identity Mapping Service.

Features
  • High performance, high reliability modular solution
  • Simultaneous support for 3 classes of standards
  • SAML (2.0)
  • Liberty Alliance (ID-WSF 1.1, ID-WSF 2.0 & ID-FF 1.2)
  • WS-Federation (1.0)
  • Tested and certified Liberty Interoperable
  • Built-in STS Functionality
  • Cardspace login support as an authentication mechanism
  • Managed Card Provider to handle and generate InfoCards
  • Supports advanced authentication methods
  • Supports a variety of Liberty ID-WSF specifications
  • Discovery Service, Discovery Bootstrap
  • Authentication Service
  • Identity Mapping Service
  • Includes full Discovery Service provider interface
  • Powerful built-in scripting for customization
 
Benefits
  • Enable federated identity in existing applications
  • Single Sign On and Single Log Off
  • Identity-based Web Services
  • Safeguard identity data for regulatory compliance
  • Increase end user convenience and productivity
  • Simplify existing data access arrangements
  • Reduce costs with a standards-based architecture
  • Centralize authentication and access policy for more effective control and simpler management

 

Platforms Supported
  • Microsoft Windows
  • Solaris Sparc 8 or higher
  • Solaris x86 9 or higher
  • Linux
  • AIX
  • HP/UX
 
Protocols Supported
  • LDAP(S)
  • HTTP(S)
  • SOAP
  • RADIUS
  • DIAMETER
  • SIP
  • MM7
  • Raw TCP/UDP
  • SNMP

What is the Symlabs Federated Identity Suite?

It's a suite of software components that enable our clients to develop a Federated Single Sign On (SSO) environment. TOP

What software components make up the Symlabs Federated Identity Suite?

  1. Identity Provider (IdP)

  2. Service Provider (SP)

  3. Client Kit

TOP

Do I need to purchase the entire Symlabs Federated Identity Suite or can I purchase the components individually?

Each of our components (IdP, SP and the Client Kit) can be purchased individually. TOP

What is the Pricing Model for the Symlabs Federated Identity Suite and the individual components?

Software Licensing is done on a PER CPU basis.TOP

Am I able to obtain an evaluation copy of the Symlabs Federated Identity Suite?

Yes. We offer an unlimited software license at no cost for 45 days. Be sure to ask about our "Try Before You Buy" program. TOP

What services do you provide to support the Symlabs Federated Suite?

We offer the following services:

  • Annual Support

  • Professional Services

  • Training

TOP

What kind of Annual Support do you offer? How is it priced?

We offer Bronze, Silver, Gold and Platinum levels of support. Support is priced as a % of the software license list price. TOP

What types of Professional Services do you offer to support the Symlabs Federated Identity Suite?

Our Professional Services staff can install, configure, optimize and test our software on your behalf. TOP

Do you offer Training for the Symlabs Federated Identity Suite?

We offer both classroom and onsite training to our clients. Our training can be either "manual-based" or "hands-on" depending on our clients needs.

TOP

Do you have integration partners that resell and deploy your software?

Yes. We work with integration partners all over the world that we have trained to become fully knowledgeable regarding our products and servcies. Please contact Jeffrey Zukowski (jeff@symlabs.com or 310-663-2407) for more information regarding the possibility and benefits of becoming a Symlabs integration partner.

TOP

How is the Symlabs Federated Identity Suite implemented?

SFIS is implemented in our own scripting language, called Directory Script. The flexible scripting approach allows our products to be easily modified to meet the complex needs of our client's requirements. The scripts run on top of a high-performance engine also built by Symlabs, named dsproxy. This engine was developed in C, with performance and stability as the primary goals. TOP

How is the Symlabs Federated Identity Suite administered?

Our products can be operated from comand-line, with the start scripts we provide. The configuration is stored in plain text files and can be edited directly. In addition, we also supply a web-based administration console. TOP

How is audit handled in the Symlabs Identity Provider (IdP)?

The logging output of the Identity Provider has different levels of audit which are configurable by the administrator. The logs are text files that can be parsed to allow any kind of audit processing, as well as alarm generation. TOP

Does the Symlabs Identity Provider (IdP) generate unique identifiers for the users?

Our Identity Provider supports many different name identifier formats, including SAML2's persistent and transient. It is also able to generate new identifiers based on the parameters of the Authentication Request sent by the Service Providers.

  • How is user session handled in Symlabs Identity Provider (IdP)?*

Our Identity Provider has two configurable timeouts: A soft one that when expired will request users to reauthenticate during SSO, and a hard one that allows the Identity Provider to process Single Logouts until expired. Any of these two can be turned off by configuration.

TOP

Does the Symlabs Identity Provider (IdP) require a Symlabs Service Provider (SP) to communicate with or does it integrate with any SAML 2.0 compliant product?

Our products can work with any other SAML2.0 compliant application. We have an extensive interoperating experience after participating in many IOPs and Conformance events. Besides SAML2, we also support many other SSO/Federation protocols such as Liberty ID-FF1.2 and WS-Federation. TOP

How can the Client Kit be used and what features does it provide?

The

TOP

About Symlabs
 
Symlabs focuses on Identity Management. We offer "standards based" software components like the Symlabs Virtual Directory Server, Symlabs LDAP Proxy and the Symlabs Federated Identity Suite. We also offer software support, training and professional services.