A name ID names a user in an assertion in a unique way. The name ID is added to the assertion sent to the Service Provider.
The format of the name ID establishes the type of content that is used for the ID. For example, the format can be the User DN, in which case the content would be a uid.
You can encrypt a Name ID. However, for single sign-on with the artifact binding, encrypting a NameID with other data in an assertion increases the size of the assertion.
Note: The NameID is required in an assertion.
To configure a name ID
For a description of each format, see the OASIS Security Assertion Markup Language (SAML) V2.0 specification.
The contents of the Name ID Fields section change according to the Name ID Type selected.
Note: If you configure Name IDs, do not select an affiliation in the SAML Affiliation field. Name IDs and affiliations are mutually exclusive.
Copyright © 2013 CA.
All rights reserved.
|
|