00:00 Do you currently use Shibboleth and Azure AD/ADFS? Are your users having to log in multiple times to different SSO systems defeating the object of 'Single Sign On'? Wouldn't you love to have one login for users instead of having to login to Shibboleth and Azure AD or ADFS separately? Well, now you can with SAAM.
00:21 SAAM is short for Shibboleth Azure AS/ADFS Authentication module. It allows you to bridge the authentication between Shibboleth and ADFS or Azure AD. This means that as soon as a user logs into either a Shibboleth or Azure AD or ADFS resources they will automatically be logged into both SSO systems.
00:42 Here is a quick video demonstration of SAAM in action at the University of Dundee:
I'll start by logging into a Shibboleth resource, 'Digimap', as you can see I am presented with the UK federation discovery service. I choose the University of Dundee. I am the directed to the Azure AD login. I login with my Azure AD account.
01:04 I am then redirected to the Shibboleth Idp and the authenticator without having to login again. If I then access an Azure AD resource, such as Outlook, I can now seamlessly move to that resource without being prompted to login again. I could have also started this process by logging into an Azure AD resource first and the process would have been just as seamless.
01:25 It is Important to note that your users will only ever see one login screen for the browser session. Or with ADFS they will be seamlessly logged in if they are on a domain-connected machine.
01:35 There are many benefits to using SAAM however here are a few;
- Seamless Logins between Azure AD/ADFS and Shibboleth.
- A single login page with a consistent design.
- You are using Microsoft Products to authenticate to Microsoft Products and Shibboleth for Federated Access.
- SAAM is easy and it's a fully managed set-up and support contract provided by Overt Software.