- Популярные видео
- Авто
- Видео-блоги
- ДТП, аварии
- Для маленьких
- Еда, напитки
- Животные
- Закон и право
- Знаменитости
- Игры
- Искусство
- Комедии
- Красота, мода
- Кулинария, рецепты
- Люди
- Мото
- Музыка
- Мультфильмы
- Наука, технологии
- Новости
- Образование
- Политика
- Праздники
- Приколы
- Природа
- Происшествия
- Путешествия
- Развлечения
- Ржач
- Семья
- Сериалы
- Спорт
- Стиль жизни
- ТВ передачи
- Танцы
- Технологии
- Товары
- Ужасы
- Фильмы
- Шоу-бизнес
- Юмор
Single Sign-On (SSO) Explained | SAML, OIDC, OAuth 2.0 & SCIM Full Guide
🔐 Welcome to IAM Foundations Module 2 —
Single Sign-On (SSO) | by Askmeidentity!
One password. One login. Access to EVERYTHING.
That's the power of SSO — and in this video,
we break down exactly how it works under the hood. 💡
Whether you're based in the US, UK, Europe or
Australia — SSO is the skill every IAM engineer,
cloud architect and security professional
MUST master in 2026. 💼
━━━━━━━━━━━━━━━━━━━━━━━━
📚 WHAT YOU'LL LEARN IN THIS VIDEO:
━━━━━━━━━━━━━━━━━━━━━━━━
🔹 2.1 — What is SSO?
▶ One set of credentials for multiple apps & services
▶ How SSO eliminates password fatigue
▶ Centralizing authentication across the enterprise
▶ SSO in workforce vs. customer (consumer) contexts
🔹 2.2 — How SSO Works: The Full Flow
▶ User → Service Provider → Identity Provider (IdP)
▶ Authentication with username/password + MFA
▶ Token/assertion issued back to the application
▶ Session reuse — no re-authentication needed
▶ Step-by-step SSO flow explained visually
🔹 2.3 — SSO Protocol: SAML 2.0
▶ Security Assertion Markup Language — XML-based
▶ Key components: IdP, SP & SAML Assertions
▶ SP-Initiated vs IdP-Initiated SSO flows
▶ Trust establishment with XML metadata exchange
▶ XML Digital Signatures (XML-DSig) with RSA-SHA256
▶ Best use cases: enterprise web apps & regulated environments
🔹 2.4 — SSO Protocol: OpenID Connect (OIDC)
▶ Built on OAuth 2.0 — uses JSON Web Tokens (JWT)
▶ Key components: OpenID Provider, Relying Party, ID Token
▶ Authorization code flow, implicit & hybrid flows
▶ PKCE for securing mobile apps & SPAs
▶ ID Token structure: sub, name, email, iss, aud, exp
▶ OIDC vs SAML: JSON vs XML, modern vs legacy
🔹 2.5 — OAuth 2.0 (Authorization Framework)
▶ OAuth 2.0 = Authorization, NOT Authentication
▶ Grant types: Authorization Code, Client Credentials,
Device Authorization
▶ Access Tokens vs Refresh Tokens
▶ Scopes — defining access levels
▶ OAuth 2.0 + OIDC working together
▶ Machine-to-Machine (M2M) with Client Credentials grant
🔹 2.6 — SCIM: System for Cross-domain Identity Management
▶ SCIM = User provisioning & deprovisioning standard
▶ RESTful API for creating, updating & deleting accounts
▶ SCIM schema: users and groups standardization
▶ How SCIM complements SAML/OIDC
▶ SSO handles login. SCIM handles lifecycle.
▶ Use cases: automated onboarding/offboarding across SaaS
━━━━━━━━━━━━━━━━━━━━━━━━
🌍 WHO IS THIS VIDEO FOR?
━━━━━━━━━━━━━━━━━━━━━━━━
✅ IT professionals in the US, UK, Europe & Australia
looking to specialize in IAM & identity security
✅ Cybersecurity engineers preparing for Okta,
Azure AD, Ping or SailPoint roles
✅ Developers building SSO integrations
with SAML, OIDC or OAuth 2.0
✅ Cloud architects designing Zero Trust
identity architectures
✅ Beginners entering the IAM field
with zero prior experience
━━━━━━━━━━━━━━━━━━━━━━━━
🎓 START YOUR IAM CAREER TODAY
━━━━━━━━━━━━━━━━━━━━━━━━
📝 Register for our IAM Cohort →
https://forms.office.com/Pages/ResponsePage.aspx?id=8bupZ6R16kqzpNoPOW2-RVuMGF-v6upJhZYEt2yCsHxUOE5MS09QMElIQ0JaNkdJMEczWlozQzJXNC4u
🌐 Explore all courses →
https://training.askmeidentity.com/courses
📞 Call us: +1 5557201118
━━━━━━━━━━━━━━━━━━━━━━━━
🔔 SUBSCRIBE & HIT THE BELL
━━━━━━━━━━━━━━━━━━━━━━━━
New IAM & Cybersecurity tutorials every week!
👍 LIKE if this helped you understand SSO!
💬 COMMENT your SSO question below!
🔁 SHARE with someone learning IAM!
✅ What is Single Sign-On (SSO)?
SSO allows users to authenticate once and gain access to multiple applications without logging in separately to each one — using a centralized Identity Provider (IdP).
✅ What is the difference between SAML and OIDC?
SAML 2.0 is XML-based and best for traditional enterprise web applications. OIDC is JSON/JWT-based, built on OAuth 2.0, and ideal for modern APIs, mobile apps and cloud-native systems.
✅ Is OAuth 2.0 the same as SSO?
No. OAuth 2.0 is an authorization framework — it grants access to resources, not identity. OIDC extends OAuth 2.0 to add authentication, making the combination usable for SSO.
✅ What is SCIM used for?
SCIM (System for Cross-domain Identity Management) automates user provisioning and deprovisioning
across SaaS applications — it works alongside SSO to manage the full identity lifecycle.
✅ What is PKCE in OAuth 2.0?
Proof Key for Code Exchange (PKCE) is a security extension for OAuth 2.0 that protects public clients like mobile apps and Single Page Applications (SPAs)
from authorization code interception attacks.
.
.
.
#SSO #SingleSignOn #SAML #SAML2 #OIDC
#OAuth2 #JWT #SCIM #IAM #IAMTraining
#IdentityAndAccessManagement #Cybersecurity
#AskmeIdentity #ZeroTrust #CloudSecurity
#IdentityProvider #OpenIDConnect #PKCESecurity
#CyberSecurity2026 #IAMEngineer #InfoSec
#OktaTraining #AzureAD #PingIdentity
#CybersecurityUK #CybersecurityAustralia
#CybersecurityEurope #IAMCourse #ITCareers
#IdentityGovernance #CloudIAM #SSOExplained
Видео Single Sign-On (SSO) Explained | SAML, OIDC, OAuth 2.0 & SCIM Full Guide канала Askmeidentity - Identity Experts
Single Sign-On (SSO) | by Askmeidentity!
One password. One login. Access to EVERYTHING.
That's the power of SSO — and in this video,
we break down exactly how it works under the hood. 💡
Whether you're based in the US, UK, Europe or
Australia — SSO is the skill every IAM engineer,
cloud architect and security professional
MUST master in 2026. 💼
━━━━━━━━━━━━━━━━━━━━━━━━
📚 WHAT YOU'LL LEARN IN THIS VIDEO:
━━━━━━━━━━━━━━━━━━━━━━━━
🔹 2.1 — What is SSO?
▶ One set of credentials for multiple apps & services
▶ How SSO eliminates password fatigue
▶ Centralizing authentication across the enterprise
▶ SSO in workforce vs. customer (consumer) contexts
🔹 2.2 — How SSO Works: The Full Flow
▶ User → Service Provider → Identity Provider (IdP)
▶ Authentication with username/password + MFA
▶ Token/assertion issued back to the application
▶ Session reuse — no re-authentication needed
▶ Step-by-step SSO flow explained visually
🔹 2.3 — SSO Protocol: SAML 2.0
▶ Security Assertion Markup Language — XML-based
▶ Key components: IdP, SP & SAML Assertions
▶ SP-Initiated vs IdP-Initiated SSO flows
▶ Trust establishment with XML metadata exchange
▶ XML Digital Signatures (XML-DSig) with RSA-SHA256
▶ Best use cases: enterprise web apps & regulated environments
🔹 2.4 — SSO Protocol: OpenID Connect (OIDC)
▶ Built on OAuth 2.0 — uses JSON Web Tokens (JWT)
▶ Key components: OpenID Provider, Relying Party, ID Token
▶ Authorization code flow, implicit & hybrid flows
▶ PKCE for securing mobile apps & SPAs
▶ ID Token structure: sub, name, email, iss, aud, exp
▶ OIDC vs SAML: JSON vs XML, modern vs legacy
🔹 2.5 — OAuth 2.0 (Authorization Framework)
▶ OAuth 2.0 = Authorization, NOT Authentication
▶ Grant types: Authorization Code, Client Credentials,
Device Authorization
▶ Access Tokens vs Refresh Tokens
▶ Scopes — defining access levels
▶ OAuth 2.0 + OIDC working together
▶ Machine-to-Machine (M2M) with Client Credentials grant
🔹 2.6 — SCIM: System for Cross-domain Identity Management
▶ SCIM = User provisioning & deprovisioning standard
▶ RESTful API for creating, updating & deleting accounts
▶ SCIM schema: users and groups standardization
▶ How SCIM complements SAML/OIDC
▶ SSO handles login. SCIM handles lifecycle.
▶ Use cases: automated onboarding/offboarding across SaaS
━━━━━━━━━━━━━━━━━━━━━━━━
🌍 WHO IS THIS VIDEO FOR?
━━━━━━━━━━━━━━━━━━━━━━━━
✅ IT professionals in the US, UK, Europe & Australia
looking to specialize in IAM & identity security
✅ Cybersecurity engineers preparing for Okta,
Azure AD, Ping or SailPoint roles
✅ Developers building SSO integrations
with SAML, OIDC or OAuth 2.0
✅ Cloud architects designing Zero Trust
identity architectures
✅ Beginners entering the IAM field
with zero prior experience
━━━━━━━━━━━━━━━━━━━━━━━━
🎓 START YOUR IAM CAREER TODAY
━━━━━━━━━━━━━━━━━━━━━━━━
📝 Register for our IAM Cohort →
https://forms.office.com/Pages/ResponsePage.aspx?id=8bupZ6R16kqzpNoPOW2-RVuMGF-v6upJhZYEt2yCsHxUOE5MS09QMElIQ0JaNkdJMEczWlozQzJXNC4u
🌐 Explore all courses →
https://training.askmeidentity.com/courses
📞 Call us: +1 5557201118
━━━━━━━━━━━━━━━━━━━━━━━━
🔔 SUBSCRIBE & HIT THE BELL
━━━━━━━━━━━━━━━━━━━━━━━━
New IAM & Cybersecurity tutorials every week!
👍 LIKE if this helped you understand SSO!
💬 COMMENT your SSO question below!
🔁 SHARE with someone learning IAM!
✅ What is Single Sign-On (SSO)?
SSO allows users to authenticate once and gain access to multiple applications without logging in separately to each one — using a centralized Identity Provider (IdP).
✅ What is the difference between SAML and OIDC?
SAML 2.0 is XML-based and best for traditional enterprise web applications. OIDC is JSON/JWT-based, built on OAuth 2.0, and ideal for modern APIs, mobile apps and cloud-native systems.
✅ Is OAuth 2.0 the same as SSO?
No. OAuth 2.0 is an authorization framework — it grants access to resources, not identity. OIDC extends OAuth 2.0 to add authentication, making the combination usable for SSO.
✅ What is SCIM used for?
SCIM (System for Cross-domain Identity Management) automates user provisioning and deprovisioning
across SaaS applications — it works alongside SSO to manage the full identity lifecycle.
✅ What is PKCE in OAuth 2.0?
Proof Key for Code Exchange (PKCE) is a security extension for OAuth 2.0 that protects public clients like mobile apps and Single Page Applications (SPAs)
from authorization code interception attacks.
.
.
.
#SSO #SingleSignOn #SAML #SAML2 #OIDC
#OAuth2 #JWT #SCIM #IAM #IAMTraining
#IdentityAndAccessManagement #Cybersecurity
#AskmeIdentity #ZeroTrust #CloudSecurity
#IdentityProvider #OpenIDConnect #PKCESecurity
#CyberSecurity2026 #IAMEngineer #InfoSec
#OktaTraining #AzureAD #PingIdentity
#CybersecurityUK #CybersecurityAustralia
#CybersecurityEurope #IAMCourse #ITCareers
#IdentityGovernance #CloudIAM #SSOExplained
Видео Single Sign-On (SSO) Explained | SAML, OIDC, OAuth 2.0 & SCIM Full Guide канала Askmeidentity - Identity Experts
Комментарии отсутствуют
Информация о видео
1 апреля 2026 г. 5:30:00
00:09:59
Другие видео канала
Okta OAuth - Implicit grant type
Installation of Pingfederate on a virtual machine
Mastering Okta Platform and Administration Essentials | Admin Console, OIE, and SIEM | 2026
Student Testimonial: Mastering OKTA Administration with AskMeIdentity!
Okta DevOps - Introduction to DevOps for IAM
How AskMeIdentity Training Helped Me Land My Dream Cybersecurity Job!
Demo: Okta Practice Test | The Surprising Truth About Okta Practice Tests Nobody Tells You
Welcome to Askmeidentity
Askmeidentity Announcement about Okta certification.
Avoid these 5 IAM interview mistakes
What is MFA? TOTP, FIDO2, Passkeys & Passwordless Authentication Explained | IAM Course Module 3
What is Identity and Access Management (IAM)? | Zero Trust, RBAC, AuthN vs AuthZ Explained 2026
Okta Devops - Introduction to Terraform Infrastructure as a Code | Basic Project Structure
Okta Privileged Access Explained 2026 | Mastering the Essentials | PAM + Zero Trust + Admin Controls
What is IAM | Askmeidentity
Course launch - CERTIFIED ETHICAL HACKER - CEH- 2024
Student Testimonial: Mastering OKTA Administration with AskMeIdentity!
Privilege Management in IAM | Identity & Access Security
NHI Security Explained | Why Machine Identities Outnumber Humans 144:1 | IAM Foundations
Introduction To SAILPOINT IIQ
Struggling to get shortlisted for IAM roles?
