Security Assertion Markup Language (SAML) is an XML-based data format that allows various software platforms to exchange authorization information through an identity provider (IdP). The most common case is to allow users to log in between different software platforms using the same user login information. This is what we often call single sign-on (SSO).
We provide this functionality for the Confluence data center to connect to your IdP so that you can provide SSO functionality to your users. This only handles authorization. Application access and any other functions that require authorization, such as checking which user group a user belongs to, what roles and what permissions they have should be configured on your directory server or in the application itself.
Supported Identity Provisioning Systems
SAML should be able to work in any identity provider system (using HTTP's POST binding) that supports the SAML 2.0 Web browser SSO attribute.
We currently test the following systems:
- Microsoft Active Directory (using ADFS 3.0)
- Microsoft Azure Active Directory
- OneLogin
- Octa
- PingIdentity
Set up single sign-on
You need to configure your application and IdP for your users to support single sign-on.
https://www.cwiki.us/display/CONFLUENCEWIKI/SAML+SSO+for+Confluence+Data+Center