Create the IdP-to-SP Partnership

CA SiteMinder® Federation Standalone Guide › Getting Started with a Simple Partnership › Configure the IdP Partner › Create the IdP-to-SP Partnership

Create the IdP-to-SP Partnership

After creating the partnership entities, follow the partnership wizard to configure the IdP ->SP partnership. The first is to provide the name and other basic information for the partnership.

Follow these steps:

Select the Federation tab.
Click Create Partnership, SAML2 IdP -> SP.
Selecting this option indicates that you are the local IdP.

You come to the first step in the partnership wizard.
Complete the fields with the following values:

Partnership Name

TestPartnership

Local IDP ID

idp1

(selected from the pull-down list)

Remote SP ID

sp1

(selected from the pull-down list)

Base URL

http://idp1.example.com:9090

This value should be provided by default.

Skew Time (Seconds)

Accept the default
Move the ODBC directory (FedSQL) from the Available Directories box to the Selected Directories box.
Click Next to go to the Federation Users step.

Specify Federation Users for Assertion Generation

In the Federation Users dialog, select the users for which the IdP generates assertions.

Follow these steps:

Accept the defaults.
Click Next to continue.

By accepting the defaults, you indicate that CA SiteMinder® can generate assertions for all users in the user directory.

Add a Name ID to the Assertion

The Assertion Configuration step lets you specify the format and value of the NameID and the attributes that identify a user. These attributes are included in the assertion.

Note: NameID is always included in the assertion.

In this configuration, specify only the Name ID. Do not add any other attributes.

Follow these steps:

From the Assertion Configuration step, enter values for the following fields:

Name ID Format

Unspecified

Name ID Type

Static

Value

GeorgeC
Click Next to move on and set up single sign-on (SSO).