Federation Manager GuideFederation Partnerships › Federation Users Configuration at the Asserting Party

Previous Topic: Editing Entities from the Partnership

Next Topic: User Identification (Relying Party)

Federation Users Configuration at the Asserting Party

If the local entity is the asserting party, the Federation Users dialog appears as the second step in the partnership process. The purpose of this step is to specify which users are authorized to access target resources at the remote site.

Note: You can click Help for a description of fields, controls, and their respective requirements.

To specify the users for federation

  1. Select a user directory from the list in the Directory column of the table of the Federated Users group box.

    The pull-down list consists of one or more directory entries, depending on the number of directories you specified in the previous dialog.

  2. Select the user class in the User Class column.
  3. Specify a user name or create a filter for the User Name/Filter By column.
  4. (Optional) You can select Exclude for an entry to indicate that you want to exclude this user class. The default is to include all users in the directory.

    Note: An exclude criteria always takes precedence over an include criteria in case the two criteria conflict.

  5. (Optional) Click Add Row to specify an additional user class for the same directory or another user directory.
  6. Click Next.

    The Name ID and Attributes dialog displays.

Copyright © 2010 CA. All rights reserved. Email CA about this topic