The main purpose of CA SiteMinder® Federation Standalone is to establish a partnership between two organizations so they can share user identity information and can facilitate single sign-on (SSO). A partnership consists of two entities at different sites—one local and one remote. Either entity can assume the role of the asserting party, the side which produces assertions or the relying party, the side which consumes assertions.
If CA SiteMinder® Federation Standalone is installed at both sites, each site must define a partnership. For each local asserting party-to-relying party partnership at one site, there has to be a reciprocal local relying party-to-asserting party partnership at the partner site. The two definitions define a single partnership.
In the following figure, SiteA has been configured as the local SAML 2.0 IdP and has specified SiteB as the remote SAML 2.0 SP. SiteB has been configured as the local SAML 2.0 SP, and SiteA is its remote SAML 2.0 IdP.
Note: An asserting party can have partnerships with more than one relying party and a relying party can establish partnerships with more than one asserting party.
Creating a federation partnership consists of the following steps:
|
Copyright © 2013 CA.
All rights reserved.
|
|