Contact Us

Service Provider (SP) :: Federated Identity Suite

Complete Service Provider Functionality

Symlabs Service Provider Base (SP Base) is the component of Symlabs Fed- erated Identity Suite that delivers a full, stand-alone, multi-protocol Service Provider (SP) to obtain user authentication information from Identity Providers (IdPs) and create a Single Sign-On (SSO) environment. It can also handle Federation and Session information and management including Defederation and Single Logout (SLO).
 
Symlabs Service Provider Base (SP Base) understands attribute-based identity information sent by an IdP and can be integrated as part of a portal that allows users to log in. It has full client interfaces for most Liberty Web Services Framework services, i.e. Discovery Service, Personal Profile, People Service, etc. Any desired web service can be implemented by extending Symlabs Service Provider SP Base, either by using the built-in Symlabs DirectoryScript scripting language or by calling an external C Library.
 
Industry Standards Support
 
Specifications supported for SSO and Session and Federation Management include:
  • Liberty ID-FF 1.2
  • OASIS SAML 2.0 full extended profile
  • WS-Federation 1.0 (SSO, SLO)

Liberty ID-WSF 1.1 & Liberty ID-WSF 2.0 specifications supported for the secure exchange of identity information are:

  • Discovery Service Client / Discovery Bootstrap
  • Authentication Service Client
  • Personal Profile Client
  • People Service Client
  • ID-CSM Client
  • ID-DAP Client

Federated Identity Suite :: Service Provider Diagram

Features
  • Carrier-grade high performance and reliability
  • Simultaneous support for 3 classes of standards
  • SAML (2.0)
  • Liberty Alliance (ID-WSF 1.1, ID-WSF 2.0 & ID-FF 1.2)
  • WS-Federation (1.0)
  • Tested and certified Liberty Interoperableâ„¢
  • Supports key Liberty ID-WSF specifications
  • Personal Profile client, People Service client
  • Discovery Service client, Discovery bootstrap
  • Authentication Service client
  • ID-CSM client, ID-DAP client
  • Audit trail in the form of digitally signed assertions
  • Powerful built-in scripting for customization

 

Benefits
  • Shields applications from independent access policy and authentication decisions
  • Secure identity and data sharing
  • Easily deploy multiple IdPs to reach a bigger market
  • Reduced costs with standards-based architecture
  • Avoids requirement for local user database by using SAML attribute statement from IdP
  • SSO offers end user convenience and tight security
  • Easy back-end integration with LDAP directories and SQL databases rol and simpler management

 

Platforms Supported
  • Microsoft Windows
  • Solaris Sparc 8 or higher
  • Solaris x86 9 or higher
  • Linux
  • AIX
  • HP/UX
 
Protocols Supported
  • LDAP(S)
  • HTTP(S)
  • SOAP
  • RADIUS
  • DIAMETER
  • SIP
  • MM7
  • Raw TCP/UDP
  • SNMP

Symlabs is now part of Quest Software. A leader in simplifying and reducing the cost of IT management, Quest’s innovative solutions make solving the toughest IT management problems easier, enabling more than 100,000 customers worldwide to save time and money across physical, virtual and cloud environments. The addition of Symlabs virtual directory and federation technology will enhance the overall architecture of the Quest® One Identity Solution and Quest migration products. Learn more at www.quest.com/symlabs.