The SAML web site is not longer accepting new posts. Information on this page is preserved for legacy purposes only. For current information on SAML, please see the OASIS Security Services Technical Committee Wiki.

Welcome to SAML

This is the official community gathering place and information resource for the SAML OASIS Standard. SAML provides an XML-based framework for creating and exchanging security information between online partners. This is a community-driven site, and the public is encouraged to contribute content.

LemonLDAP::NG now supports SAMLv2 as authentication backend

The first release candidate of LemonLDAP::NG was published this week.

In the big changelog, we can see that this product new supports SAMLv2 as authentication backend. The identity provider feature is a work in progress, and should be available in stable release.

 Download 1.0rc1 here:

Read more



LemonLDAP::NG is a full open source WebSSO product.

It supports a lot af authentication backends :

  • LDAP
  • SSL
  • Kerberos
  • CAS
  • DBI
  • Liberty Alliance
  • SAMLv2
  • OpenID
  • Twitter

Read more

SOA Software Announces Advanced Policy and Security Federation for SOA and Cloud Services

SOA Software today announced Policy Manager 6.0 with advanced Policy and security Federation for SOA and Cloud Services. SOA provides the foundation for a successful transition to an Enterprise Cloud Operating Model. Providing the right level of control over distributed, heterogeneous systems and platforms requires the effective policy governance provided by Policy Manager version 6.0.

Read more

Best practices for web services interoperability

The Web Services Interoperability Organization (WS-I) announced the publication of the WS-I Basic Security Profile (BSP) 1.1 as final material for public access.

WS-I is an open industry organization chartered to establish and document Best Practices for Web Services interoperability. The WS-I Basic Security Profile is an essential guide for ensuring secure, interoperable Web services, based on a set of non-proprietary Web services specifications, along with clarifications and amendments to those specifications that promote interoperability.

Read more


OneLogin is a cloud-based provider of single sign-on, user provisioning and directory integration. OneLogin is pre-integrated with 1,500+ of applications, such as Salesforce, Google Apps, SugarCRM, WebEx, Workday, OpenAir,, Cornerstone OnDemand, Coupa, Yammer, Zendesk, WordPress, Central Desktop, KnowledgeTree and many more. 

Read more Focus Areas: BPEL | DITA | ebXML | IDtrust | OpenDocument | SAML | UBL | UDDI
OASIS sites: OASIS | Cover Pages | | AMQP | CGM Open | eGov | Emergency | IDtrust | LegalXML | Open CSA | OSLC | WS-I