AuthnMethod
Refers to those characteristics that define the
mechanisms by which the Principal authenticates to the Authentication
Authority.
Element information
Namespace: None
Schema document: saml-2.0-os/saml-schema-authn-context-types-2.0.xsd
Type: AuthnMethodBaseType
Properties: Global, Qualified
Content
- Sequence [1..1]
- PrincipalAuthenticationMechanism [0..1] The method that a Principal employs to perform authentication to local system components.
- Authenticator [0..1] The method applied to validate a principal's authentication across a network
- AuthenticatorTransportProtocol [0..1] The protocol across which Authenticator information is transferred to an Authentication Authority verifier.
- Extension [0..*]
Attributes
None
Used in
- Type AuthnContextDeclarationBaseType (Element AuthenticationContextDeclaration)
Sample instance
<AuthnMethod> <PrincipalAuthenticationMechanism> <Password> <Length min="1"/> <Alphabet requiredChars="string"/> <Generation mechanism="principalchosen"/> <Extension> <!--any element--> </Extension> </Password> <RestrictedPassword> <Length min="1"/> <Generation mechanism="principalchosen"/> <Extension> <!--any element--> </Extension> </RestrictedPassword> <Token> <TimeSyncToken DeviceType="hardware" SeedLength="1" DeviceInHand="true"/> <Extension> <!--any element--> </Extension> </Token> <Smartcard> <Extension> <!--any element--> </Extension> </Smartcard> <ActivationPin> <Length min="1"/> <Alphabet requiredChars="string"/> <Generation mechanism="principalchosen"/> <ActivationLimit>... </ActivationLimit> <Extension> <!--any element--> </Extension> </ActivationPin> <Extension> <!--any element--> </Extension> </PrincipalAuthenticationMechanism> <Authenticator> <PreviousSession> <Extension> <!--any element--> </Extension> </PreviousSession> <PreviousSession> <Extension> <!--any element--> </Extension> </PreviousSession> <ResumeSession> <Extension> <!--any element--> </Extension> </ResumeSession> <DigSig> <Extension> <!--any element--> </Extension> </DigSig> <Password> <Length min="1"/> <Alphabet requiredChars="string"/> <Generation mechanism="principalchosen"/> <Extension> <!--any element--> </Extension> </Password> <RestrictedPassword> <Length min="1"/> <Generation mechanism="principalchosen"/> <Extension> <!--any element--> </Extension> </RestrictedPassword> <ZeroKnowledge> <Extension> <!--any element--> </Extension> </ZeroKnowledge> <SharedSecretChallengeResponse> <Extension> <!--any element--> </Extension> </SharedSecretChallengeResponse> <SharedSecretDynamicPlaintext> <Extension> <!--any element--> </Extension> </SharedSecretDynamicPlaintext> <IPAddress> <Extension> <!--any element--> </Extension> </IPAddress> <AsymmetricDecryption> <Extension> <!--any element--> </Extension> </AsymmetricDecryption> <AsymmetricKeyAgreement> <Extension> <!--any element--> </Extension> </AsymmetricKeyAgreement> <SubscriberLineNumber> <Extension> <!--any element--> </Extension> </SubscriberLineNumber> <UserSuffix> <Extension> <!--any element--> </Extension> </UserSuffix> <Extension> <!--any element--> </Extension> </Authenticator> <AuthenticatorTransportProtocol> <HTTP> <Extension> <!--any element--> </Extension> </HTTP> <Extension> <!--any element--> </Extension> </AuthenticatorTransportProtocol> <Extension> <!--any element--> </Extension> </AuthnMethod>