https://stackoverflow.com/questions/21998156
italiano
english
français
española
中国
日本の
العربية
Deutsch
한국어
Português
RussianI am not sure that your statement is correct - in a multiple SPs and a single IdP scenario, the user DOES NOT need to enter the credentials whenever he tries to login to a different SP. For example, the user tries to access the first SP, gets redirected to the IDP, and asked for his creds (credentials). Since then, he does not have to re-enter his creds - so if he tries to access another SP, he again will be redirected to the IDP, that will issue the token without asking for the creds.
Why SP-Initiated is called SSO?
-
16-10-2022 - |
Question
In a multiple SPs and a single IdP scenario, why the SP-Initiated profile is called SSO if the user needs to enter the credentials whenever he or she tries to login to a different SP?
On the other hand, IdP-Initiated is a true SSO system because the user doesn't have to re-enter the credentials every time he or she tries to login to a different SP.
Any help clarifying this matter would be very appreciated.
Thanks!
Solution
Licensed under: CC-BY-SA with attribution
Not affiliated with StackOverflow
