SAML is an XML-based framework for communicating security assertions (user authentication, entitlement, and attribute information) between trusted identity providers and trusted service providers. For example, an airline company can make assertions to authenticate a user to a partner company or another enterprise application, such as a car rental company or hotel.
Identity Server allows exchange of SAML assertions with trusted service providers that use SAML servers. Using SAML assertions in Access Manager component protects confidential information by removing the need to share user credentials among components for session management.
An identity provider using the SAML protocol generates and receives assertions for authentication, according to the SAML 1.0, 1.1, and 2.0 specifications described on the Oasis Standards website.