October 28, 2008
Next News from the PDC: SAML 2.0 Protocol Support in “Geneva” Server

As Don Schmidt wrote this morning, Microsoft’s “Geneva” Identity Server product will support the SAML 2.0 protocol. Specifically, we will be supporting the SAML 2.0 IdP Lite and SP Lite profiles and the US Government GSA profile. Customers had told us that these SAML profiles are important to them and we’re responding to that feedback by implementing them in “Geneva” Server. Those of you who were at Kim Cameron’s “Identity Roadmap for Software + Services” presentation at the PDC got to see Vittorio Bertocci demonstrate SAML federation with “Geneva” Server to a site running IBM’s Tivoli Federated Identity Manager.

The “Geneva” Server is the successor to Active Directory Federation Services (ADFS). It will, of course, interoperate with existing ADFS and other federation implementations using the WS-Federation protocol. In addition, it adds WS-Trust support for issuing Information Cards, letting it work with Windows CardSpace and other Identity Selectors.

I’ll add that the SAML 2.0 support doesn’t stop with the server. SAML 2.0 is also supported by the “Geneva” Identity Framework – a .NET application development framework formerly known as “Zermatt” and “IDFX”, which likewise also supports WS-Federation and WS-Trust. In short, the same identity development framework components that are being used to build “Geneva” Server will be available to all .NET developers as the “Geneva” Identity Framework.

Finally, I’ll close by thanking the folks on the Internet 2 Shibboleth project, IBM, and Ping Identity who helped us with early interop testing of our code. You have been valuable and responsive partners in this effort, helping us make sure that what we’re building truly interoperates with other SAML 2.0 implementations deployed in the wild.

5 Responses to “Next News from the PDC: SAML 2.0 Protocol Support in “Geneva” Server”

  1. Cardspace Community Bloggers on 28 Oct 2008 at 4:27 pm #

    Welcome, Microsoft, to the World of SAML 2.0…

    This is a blog entry I’ve been wanting to write for a LONG time … At the Professional Developers Conference…

  2. Mike Jones: self-issued » More News from the PDC: Beta Releases of “Geneva” Platform Components on 28 Oct 2008 at 6:06 pm #

    [...] Using Information Cards « Next News from the PDC: SAML 2.0 Protocol Support in “Geneva” Server October 28, 2008 More News from the PDC: Beta Releases of “Geneva” Platform [...]

  3. The next best thing to the next best thing « Identity and Privacy Blog on 29 Oct 2008 at 4:11 am #

    [...] is a major vendor promising to move towards the next best thing. To that end, Microsoft’s announcement that the beta version of Geneva will not only support SAML 2.0 as a token format but also as a single sign-on protocol is very [...]

  4. Mike Jones: self-issued » AD FS 2.0 Has Shipped on 05 May 2010 at 11:15 am #

    [...] helping ensure that it works well with other’s products. Milestones along the way included early interop testing with Shibboleth, IBM, and Ping Identity during Beta 1, interop work with CA, Novell, and Sun during Beta 2, the Federation Interop at [...]

  5. Welcome, Microsoft, to the World of SAML 2.0 « Superpatterns on 17 Sep 2010 at 5:47 am #

    [...] Mike Jones: Next News from the PDC: SAML 2.0 Protocol Support in “Geneva” Server [...]

Trackback URI | Comments RSS

Leave a Reply

You must be logged in to post a comment.