Configuration GuidesFederation Security Services GuideConfigure SOA Security Manager as a SAML 2.0 Identity ProviderConfigure Single Sign-on for SAML 2.0 › Configure an Assertion for One Time Use

Previous Topic: Assertion Validity for Single Sign-on

Next Topic: Customize the Session Duration in the Assertion
Configure an Assertion for One Time Use

SOA Security Manager can generate an assertion that is intended for one time use by the relying party, requiring the relying party to request a new assertion each time it needs one. Restricting an assertion to one use helps ensure that authentication decisions are based on current information.

To generate an assertion with a one time use condition

  1. Log on to the FSS Administrative UI.
  2. Select the Service Provider you want to modify or create one.
  3. Navigate to the Advanced tab.
  4. Select the Set OneTimeUse Condition check box.
  5. Click OK.

The asserting party can now generate an assertion that includes the condition element for its one time use.