What is SAML?
When you have one user that needs access to multiple apps, you can implement single sign-on (SSO) via a SAML protocol.
This allows a user to sign on to one platform to get access to multiple services instead of having to sign on to each platform separately.
This is possible because a trusted broker, such as an identity provider, uses SAML to verify users once they’ve logged in. Once verified, this user can access any other services located on the same “property”.
With SAML, you can also whitelist users for specific applications within the organization. So even if a user is verified, it doesn’t necessarily mean they have access to everything because they first need to be whitelisted.
One disadvantage of using SAML is that it relies on login events to exchange information.