Configuration GuidesFederation Security Services GuideConfigure SOA Security Manager as a SAML 2.0 Identity ProviderConfigure Identity Provider Discovery at the IdP › Enable Identity Provider Discovery Profile (optional)

Previous Topic: Configure Identity Provider Discovery at the IdP

Next Topic: Securing the IdP Discovery Target Against Attacks
Enable Identity Provider Discovery Profile (optional)

For federated networks that have more than one IdP generating assertions, the Identity Provider Discovery profile enables users to select a specific IdP for authentication.

To enable the Identity Provider Discovery Profile

  1. Log on to the FSS Administrative UI.
  2. Open the Service Provider Properties dialog for the SP you want to modify.
  3. Select the IPD tab.

    The Identity Provider Discovery settings display.

  4. Select the Enable checkbox.

    The fields in the dialog become active.

  5. Fill in the necessary fields and click OK.

    Note: Set the Service URL field to the Identity Provider Discovery Profile servlet, which is:

    https://host:port/affwebservices/public/saml2ipd