Logging in to Artifactory via a SAML SSO can be summarized in three steps:
- Point your browser to Artifactory. Artifactory will redirect your browser to the SAML SSO login page. The Artifactory redirect will attach an XML login request to the browser session, this XML contains a return URL.
- At this step, the user logs into the SAML provider. If logging in involves 2-factor authentication and/or other security mechanisms, these will be handled entirely by the SAML provider.
- After successfully logging in, the SAML provider will redirect you back to Artifactory. The URL the redirect follows will depend on the SAML provider. It will either be the URL that was sent by Artifactory as part of the XML login request in Step #1 or one that your SAML provider has been configured to use. On the backend, your SAML provider will attach an encrypted XML document containing your user information. This XML contains the Artifactory User Name in the "NameID" field. It may also include the user's email address and group assertions.