Working with SAML integration

The SAML documentation details federated access management within Matrix through Security Assertion Markup Language 2.0 (SAML 2.0).

Federated access management involves managing a user’s identity, stored across multiple systems, allowing users to use the same identification data to obtain access to each.

Security assertion markup language 2.0 (SAML 2.0) is an XML-based standard for authenticating and authorizing access to secure domains, that is, between an identity provider and a service provider.

SAML 2.0 enables web-based authentication, providing federated access management through single sign-on and identity verification.

Matrix employs this federated access management model to provide authentication through SAML 2.0 identity providers using SimpleSAMLphp integration.

When a user first accesses Matrix through the SAML account manager asset, they will be redirected to the SAML 2.0 identity provider for authentication.

Once the identity provider has validated a user’s identification, they will be directed back to Matrix.

A user’s Matrix account will be associated with the SAML identity, enabling federated access to the system, automatically signing the user into their account as part of the SAML authentication process.

If no associated user account is found, the user will be able to either create a new account within Matrix to use for federated access or sign-in to an existing account to link to the authenticated identity.