Previous Topic: Using SAML 1.x Artifact Authentication for Solution 1

Next Topic: Solution 3: SSO with No Local User Account

Solution 2: SSO Using User Attribute Profiles

Solution 2 shows how SiteMinder Federation Security Services can be deployed at smcompany.com and partsco.com to solve Use Case 2: Single Sign-on Based on User Attribute Profiles.

SiteMinder v6.x is deployed at both sites. The interactions between the user and each site is similar, where partsco.com is acting as the consuming authority. The FWS application at the producing side provides the service that retrieves assertions. The FWS application at the consuming side provides the service that consumes assertions.

The following illustration is similar for SAML 1.x, SAML 2.0, and WS-Federation; however, the Federation Web Services components are different as follows:

SPS--sps solution attr user

The configuration is similar to Solution 1: Single Sign-on based on Account Linking, except for the following: