 Do you know what SAML is? SAML sends for security assertion markup language. It's a standard protocol that tells applications and services that a user is who they say they are. SAML makes single sign-on possible by giving the user a way to authenticate once and then communicate that authentication to multiple applications. When using SAML, first a user authenticates with an identity provider, which stores and confirms the user's identity. CRO is an example of an identity provider. Then an assertion is sent to a service provider. The service provider is the application or the server that the user wants to use, like Salesforce, for example. Then the service provider validates the assertion that it got from the identity provider. The SAML assertion tells the service provider that the user has been authenticated. This has been identity in a minute.