How does SAML work in practice?

With other applications already in production, the SSO (single sign-on) was already in place across the company. Creating our own sign-on system was not an option, for several reasons:

Several protocols allow to implement a SSO system, but first of all it is good to distinguish two things: Authentication / Authorization. To implement SSO, there are 3 main protocols:

Even though older, SAML is still used a lot in companies and more complicated to set up than OpenID.

Source: blog.theodo.com