I am in the marketing side of a SaaS company. Have to say - as a non-techie - I find your explainer videos wonderful. I am able to quickly co-relate your explanations to what's happening. It is a wonderful validation and education rolled into one. Well done. More importantly, thank you.
Hi Anshul, that was lucid and basic level explanation about SSO, SAML, AD, SP, IDP and SSSO, which could even easily be grasped by person from non-IT background. The initial example/application which you cited about "big fat wedding" is so cool. Thank you.
This part of learning was so good and easy to understand. Especially the linking with wedding function. Amazing Contribution bro. Keep the content moving. Looking forward to see more of your stuff in future. Gonna see more stuff on your channel.
Steps for SSO 1) User Request for access 2) Request access to the source ( Service provider - > web app server) 3) Request go To active directory server Federated service (ADFS) User authenticated 4) SAML Token provided will reach the browser where the request was made 5) Token redirected - > browser will redirect the token back to the service provider 6) Validate SAML Response and Token - grant access 7) Return secure page to User
Got those steps clearly, but in step 4, how Identity provider(AD) can send SAML Token back to the user browser, because Service provider(web browser) was send SAML auth request to AD server. How AD server know the client ip address to send SAML Token to client browser?
You are completely exceptional! You always making IT so enjoyable positively impacting in every aspect. Keep up the awesome work! Huge fan of you incredible work! Exceptionally well done! 👏🏽🥇👍🏽👍🏽💯
These are all theory part, if you want to implement practically then following things need to be taken care. 1.How IDP and SP exchanges the SAML meta-data(xml file). 2.How SP sends SAML request to IDP (in SP initiated). 3.How IDP sends SAML response to SP. 4.How SP redirects SAML response(token) back to SSO. 5.How SSO do identity verification and loads all application. Note: IDP : Identity provider SP: Service Provider How the above scenario practically possible for DotNet Application to load by the user.
You are an extremely skilled teacher. Not only are you knowledgeable, you also know how to explain concepts clearly. Can I ask for how many years you've been teaching now? Have a nice weekend.
thanks sir. i have some questions: 1. what is the concept for SSSO ? By logging onto the company network the user's credentials is automatically passed to the IDP? 2. This SAML token that is granted to the user, is this the same as a session cookie? (i.e. so that the web app can remember that person for 1 hour in this example) 3. how is the relationship between the SP and IDP established? using SAML code?
Sir I have watched your SamL videos it is very helpful. Thank you for making this video. Sir actually I want to implement Saml in JSP servlet but there is no reference I am getting and also there are no videos on UA-cam. Can you please help us or make a video for implementing Saml in JSP servlet it would be really helpful.
Awesome explanation made concepts interesting with relevant examples. ... Before completely watching this first video ...subscribed to your channel.. :-) Great work
Simple and clear explanation. I'm facing a challenge in my SAML SSO implementation. Can you please help on it. In my case Spring boot is SP and Ping Federation is IDP server and Angular is web client. while accessing the secured resource, SAML request is generated from SP and send it to IDP server successfully. IDP server process the request and send back the response through ACS URL. Now, Where we can handle this response? is the big concern. we have tried two scenarios: 1: handle the response in SP and extract the attributes. but after that how to send those attributes to Angular login page. if we use redirect flow, multiple user are accessing the same time, which user will get access first even its a Async way. 2: if we handle the response in Angular side, Page is giving 405 error response due to ACS URL is not supported the http method(both GET and POST). Can anyone help me how to tackle this.
Hi Vijay it is a very project specific problem and hard to troubleshoot like this. Send me this on my email itkfunde@gmail.com and I will see if I can suggest anything to help
Great explanation!! I think you missed out to cover who validates the token ? Whether sp will make any request to IdP or is there any other service which takes the responsibility for validating the token ?
I appreciate this explanation.... but u should have mentioned that IDP is ADFS server (not AD server). Coz ADFS server is the one who provide claims on behalf of AD server
Yup! Active Directory cannot understand XML as explained and shown here. It can be a directory service behind an IDP such as adfs which will communicate with it via LDAP.
You are awesome Bro! Thanks a-lot for making my journey easy. Please Post more videos for Comp Tia Security+ exam. Please please do that. Just cover about exam and little bit more topics related to that. Thanks again !
Hi It k Funde, more clarity is required on how the IDP responds to the user's browser and not the Web App Server, when it is the Web App Server that made the request for authentication in the first place. This question is from the info I gathered from your video.
I am in the marketing side of a SaaS company. Have to say - as a non-techie - I find your explainer videos wonderful. I am able to quickly co-relate your explanations to what's happening. It is a wonderful validation and education rolled into one. Well done. More importantly, thank you.
Thanks Karthik glad its helping people from non IT background which is the core mission of this channel. ♥️
@@ITkFunde ,Hi sir . I am installing TAC ,it asked me SSO IDP metadata file.please help how to get this and who will give this
@@ITkFunde pls sir it's very urgent
Thank you for sharing a beneficial information! More power🎉
Shaadi khaana example was so apt... thank you Guruji 🙏
I got distracted by you using the word 'particular' 21 times in a 7 minute video.
Apart from that, you explained it very well. Appreciate it. Thanks!
😄😄 ❤️🙏
I did not even notice the word particular. It was a terrific explanation! Thank you sir.
You have explained the concept in layman's terms so brilliantly
You've explained the concept in a simple manner and that can be understood by non techies as well
Hi Anshul, that was lucid and basic level explanation about SSO, SAML, AD, SP, IDP and SSSO, which could even easily be grasped by person from non-IT background. The initial example/application which you cited about "big fat wedding" is so cool. Thank you.
Thanks Somashekar 😊♥ I am truly grateful for your kind words 🙏😊♥
Thanks a lot! The best explanation of how SSO works so far! Very clear and understandable!
Very short and clear explanation of SSO. I love the analogy you gave of the wedding. It just made understanding SSO all the more simpler. Thanks.
Thanks Thomas 😊
Agreed It is a very good analogy.
What a picture perfect example to understand the bigger concept. Kudos to you
This part of learning was so good and easy to understand. Especially the linking with wedding function. Amazing Contribution bro. Keep the content moving. Looking forward to see more of your stuff in future. Gonna see more stuff on your channel.
when common example is used to explain any IT related topic that really helps a lot! and you did it in this video. appreciate! keep it up!
Best explanation of SAML ever. Thank you for the video.
Explained the concept in very simple language, non tech can also easily understand.Awesome.
Thanks Vishal thats the motto to make IT interesting for everyone 🙏☺️ with your support
Last two weeks, i am trying to understand this, excellent ...i will be sharing to my colleague
A very good initiative and with lively example, you really simplified "SSO". Special Kudos, friend!
Thanks Raju☺️
Steps for SSO
1) User Request for access
2) Request access to the source ( Service provider - > web app server)
3) Request go To active directory server Federated service (ADFS)
User authenticated
4) SAML Token provided will reach the browser where the request was made
5) Token redirected - > browser will redirect the token back to the service provider
6) Validate SAML Response and Token - grant access
7) Return secure page to User
Got those steps clearly, but in step 4, how Identity provider(AD) can send SAML Token back to the user browser, because Service provider(web browser) was send SAML auth request to AD server. How AD server know the client ip address to send SAML Token to client browser?
amazing ... making concept easy to understood is an gr8 talent... keep it up.. Thanks
Wedding invitiation example was really wonderful now I wll never forget whats SSO
Amazing Video ...Very easy to understand. I am preparing for my interview using your videos. Thank you !!
Simplicity is the most important thing when passing the knowledge...Ur videos always have that aspect. keep up the good work
Basics nicely explained, very impressed. Thanks for opening up a channel for networking stuff...really enjoying watching and learning.
he made a piece of cake of complex concept ! nicely done sir
You are completely exceptional! You always making IT so enjoyable positively impacting in every aspect. Keep up the awesome work! Huge fan of you incredible work! Exceptionally well done! 👏🏽🥇👍🏽👍🏽💯
Thanks Imdad ☺🙏
its a seamless explanation. Great!!!
thanks for your training - very straight to the point
Crystal clear concept...very nyc explanation ❤
Just discovered your channel, great content with straightforward description!
Thanks ☺️🙏
Best explanation on youtube! Thanks much
Wow, thanks!
Hi have watched to many vidoes but you are awesome man 🙌🙌
Good info and i can actually hear you. Thank You
Your teaching quality is awesome .❤
These are all theory part, if you want to implement practically then following things need to be taken care.
1.How IDP and SP exchanges the SAML meta-data(xml file).
2.How SP sends SAML request to IDP (in SP initiated).
3.How IDP sends SAML response to SP.
4.How SP redirects SAML response(token) back to SSO.
5.How SSO do identity verification and loads all application.
Note:
IDP : Identity provider
SP: Service Provider
How the above scenario practically possible for DotNet Application to load by the user.
I loved this particular video, thanks man!
Thank you, simple and precise explanation. Much appreciated!
thanks Tarj
Your Explanation of whole concept was awesome. keep it up
Excellent boss....well explained and easy to understand
Excellent explanation sir, thanks for sharing this video.
very well explained, the idea of black and red arrow for authentication is really good for understanding ❤❤❤
Thank you for Explaining & sharing this information. Amazing way to explain SSO
Thanks Sachin ☺️
You are an extremely skilled teacher. Not only are you knowledgeable, you also know how to explain concepts clearly. Can I ask for how many years you've been teaching now? Have a nice weekend.
Thanks for this wonderful explanation.
Thank you sir.. You make it understandable
best understood thoroughly thanks sir
Very simple and super explanation 👍👍👍👍
Dscm
thanks sir. i have some questions:
1. what is the concept for SSSO ? By logging onto the company network the user's credentials is automatically passed to the IDP?
2. This SAML token that is granted to the user, is this the same as a session cookie? (i.e. so that the web app can remember that person for 1 hour in this example)
3. how is the relationship between the SP and IDP established? using SAML code?
brilliantly explained
Very good. i'm be honest, indian accents are not all created equal. not only is he knowledgable, but understandable
Thank you so much for simple yet very clear explanation!
Nicely Explained. Awesome !!!
Very good way of teaching. Thanks.
Amazing explanation as always, thanks again.
Very amazing buffet..❤
Awesome explanation with flow diagram which I really like. Excellent..
Thanks Srinivas ☺️🙏
You made it easy to understand. Thank you.
best explanation for SSO
Thank you very much. Very simply described.!
Nice video Bhai...
Sir I have watched your SamL videos it is very helpful. Thank you for making this video. Sir actually I want to implement Saml in JSP servlet but there is no reference I am getting and also there are no videos on UA-cam. Can you please help us or make a video for implementing Saml in JSP servlet it would be really helpful.
Awesome explanation! Well done
Great source of information. Keep it up!
Good,
How the handshake will happen from user to host to Idp?
How idp knows about user? Do we need to feed to idp manually?
ahh man this was soo good. really valuable info. helped alot
Thanks Arnold ☺️🙏
Awesome explanation made concepts interesting with relevant examples. ... Before completely watching this first video ...subscribed to your channel.. :-)
Great work
nice vid.
it helped in understanding, more.
a coding example in any programming language, would have helped more.
thanks
Nice example to understand SAML in easy way
First of all thanks for simplifying stuff.
One question though - how would the step 7 works, in the sense how do they validate??
Simple and clear explanation. I'm facing a challenge in my SAML SSO implementation. Can you please help on it. In my case Spring boot is SP and Ping Federation is IDP server and Angular is web client. while accessing the secured resource, SAML request is generated from SP and send it to IDP server successfully. IDP server process the request and send back the response through ACS URL. Now, Where we can handle this response? is the big concern. we have tried two scenarios: 1: handle the response in SP and extract the attributes. but after that how to send those attributes to Angular login page. if we use redirect flow, multiple user are accessing the same time, which user will get access first even its a Async way. 2: if we handle the response in Angular side, Page is giving 405 error response due to ACS URL is not supported the http method(both GET and POST). Can anyone help me how to tackle this.
Hi Vijay it is a very project specific problem and hard to troubleshoot like this. Send me this on my email itkfunde@gmail.com and I will see if I can suggest anything to help
Thank you from France
Thanks 🙏🙏
Great explanation!!
I think you missed out to cover who validates the token ? Whether sp will make any request to IdP or is there any other service which takes the responsibility for validating the token ?
I appreciate this explanation.... but u should have mentioned that IDP is ADFS server (not AD server). Coz ADFS server is the one who provide claims on behalf of AD server
Yup! Active Directory cannot understand XML as explained and shown here. It can be a directory service behind an IDP such as adfs which will communicate with it via LDAP.
You are awesome Bro! Thanks a-lot for making my journey easy. Please Post more videos for Comp Tia Security+ exam. Please please do that. Just cover about exam and little bit more topics related to that. Thanks again !
Thanks Naiya👍👍
Fantastic video! Explained it really well, thanks!
Hi It k Funde, more clarity is required on how the IDP responds to the user's browser and not the Web App Server, when it is the Web App Server that made the request for authentication in the first place. This question is from the info I gathered from your video.
YOur explanations are wonderful 👍
Awesome explanation
Great explanation bro!
Awesome explanation
I'm loving it ❤
Excellent PPT
Good explanation. Thanks
nice and easy explanation. thanks a bunch!!
Wonderfully explained sir... Want more videos like this... 👍🙏 Subscribed
Great explanation, kudos to you 🎉
Question! Why does the SAML token need to pass through the open browser before returning to the SP - web app server?
This video is mercurial. What is the connection with Federated identity users and Cognitor. Nice work
very useful and professional content
Thanks Yasser
Very well explained 👏🏼
E X C E L L E N T VIDEO!!!! THANK YOU!
Wow..explained very clearly Anshul..superb sir. Is it possible to share a session on Bring Your Own Key (BYOK) concepts
Thanks Anant for support and suggestion
Keep going on nice explaning skill u have bro
thanks Ram 🙏🙏
Impressive sir
Very nice presentation. Keep it up.
brother i think Instead of AD as IDP we need to ADFS as IDP please let us know if i am correct
Osm bro 🎉 thanks a lot
Excellent information Sir. Thank you.
Well explained
Great Work sir 🙌
Hi, thanks for the Great video on SSO, could you please do a video on Forge rock?
thank you and it helped me in my job
It is really helpful for me. Thanks a lot
Thanks. Nice example. Very smooth.
I have one question. Is SAML always SSO?