mirror of
https://github.com/elastic/elasticsearch.git
synced 2025-04-24 23:27:25 -04:00
255c9a7f95
**Problem:** For historical reasons, source files for the Elasticsearch Guide's security, watcher, and Logstash API docs are housed in the `x-pack/docs` directory. This can confuse new contributors who expect Elasticsearch Guide docs to be located in `docs/reference`. **Solution:** - Move the security, watcher, and Logstash API doc source files to the `docs/reference` directory - Update doc snippet tests to use security Rel: https://github.com/elastic/platform-docs-team/issues/208
20 lines
960 B
Text
20 lines
960 B
Text
[role="xpack"]
|
|
[[saml-realm]]
|
|
=== SAML authentication
|
|
The {stack} {security-features} support user authentication using SAML
|
|
single sign-on (SSO). The {security-features} provide this support using the Web
|
|
Browser SSO profile of the SAML 2.0 protocol.
|
|
|
|
This protocol is specifically designed to support authentication via an
|
|
interactive web browser, so it does not operate as a standard authentication
|
|
realm. Instead, there are {kib} and {es} {security-features} that work
|
|
together to enable interactive SAML sessions.
|
|
|
|
This means that the SAML realm is not suitable for use by standard REST clients.
|
|
If you configure a SAML realm for use in {kib}, you should also configure
|
|
another realm, such as the <<native-realm, native realm>> in your authentication
|
|
chain.
|
|
|
|
In order to simplify the process of configuring SAML authentication within the
|
|
Elastic Stack, there is a step-by-step guide to
|
|
<<saml-guide-stack,Configuring SAML single-sign-on on the {stack}>>.
|