SAML 2.0 is standard that makes it possible to connect an Identity Provider that is used in a company with Barium Live. This basically means that users will be able to log into Barium Live using the username and password that they have on their computer. It also allows customers to automate user synchronization from internal catalogue services and Barium Live which can completely remove the need to manually add, remove or update user accounts and details in Barium Live.
It requires that you have an Identity Provider that supports SAML 2.0 and that Barium Live has built support for and that we configure the connection to Barium Live together with you as a customer. Depending on your needs the set up can be customized in a number of different ways.
In order to get access to this feature, please check this article for details and information on what is required and how it can be set up.
How it works:
Lets say we have a user called Lisa that have a task in Barium Live that she needs to complete.
Lisa have received a link from Barium Live to click to access the task.
If her organization does't uses SAML she will be redirected to the login page for Barium Live where she must enter her e-mail adress and password.
But if her organization uses SAML she will go directly to the task. This because the SAML will send a protocol message from the Service Provider (SP) in this case Barium Live to an Identity provider (IDP). The IDP is a services that can be located on ADFS server of the organization for example. It will look up the Lisas credentials and send them back to the SP that then know if Lisa has the right to access the task.