1.User attempts to access a hosted corporate application
2.Service provider generates and sends SAML request to the user.
3.User is redirected to the identity provider together with the SAML request.
4.Identity provider authenticates user,parses SAML request and generates encoded SAML response which is sent to the user's browser.
5.User's browser sends SAML response to service provider.
6.Service provider verifies the users SAML response and grants application access.