Last tested: Jun 21, 2019
SAML, short for Security Assertion Markup Language, is one of several standards for authentication. It is a Single Sign On (SSO) method - which means you can use it to authenticate to several different web services.
Several different companies sell SAML as a way to make authentication easier and standardized across a company. Some examples are Okta and OneLogin.
SAML SSO works by transferring the user’s identity from one place (the identity provider) to another (the service provider). This is done through an exchange of digitally signed XML documents over HTTP and SOAP.
A generic interactions among various roles involved in SAML standard can be summarised as follows:
Looker supports logging in with a SAML provider. Often, users and prospects will already have a SAML provider that they want to use with Looker to avoid having to set up credentials specifically for Looker. When a Looker instance has SAML activated, then users who come to the instance are sent to the SAML provider to authenticate and from there are granted access into Looker.
Sources / Additional Reading:
https://developers.onelogin.com/saml
https://medium.com/@sagarag/reloading-saml-saml-basics-b8999995c73e
https://medium.com/@sagarag/reloading-saml-do-you-really-need-saml-931976b3b5e3
This content is subject to limited support.