SAML 2.0

Harmony SASE allows users to authenticate using the third-party Identity Providers (IdP) that support Security Assertion Markup Language (SAML) 2.0 protocol.

SAML-based authentication involves two parties:

• Identity Provider (IdP): Authenticates the user and if successful, it provides a SAML Assertion to the Service Provider (SP).

• Service Provider (SP): Checks the SAML Assertion and if successful, it allows the user to access the service.

Harmony SASE serves as the Service Provider (SP) to authenticate the users and integrates with these Identity Providers that support SAML 2.0 protocol:

• Generic SAML

• Active Directory Federation Services (AD FS)

• Auth0

• Keycloak

• OneLogin

• PingOne for Enterprise

• PingFederate

• Rippling

• JumpCloud

• Okta with SAML