Previous Topic: Create the SP-to-IdP PartnershipNext Topic: Configure Single Sign-on

CA SiteMinder® Federation Standalone GuideGetting Started with a Simple PartnershipConfigure the SP PartnerSpecify the User Identification Attribute

Specify the User Identification Attribute

Designate which attribute from the assertion should be used to identify a user. This identity attribute value is used in the user disambiguation process, that is, the process of locating the user record in the SP's user directory.

Follow these steps:

  1. Go to the User Identification step.
  2. Accept the default, Use Name ID, in the Choose Identity Attribute from Assertion group box.
  3. In the Map Identity Attribute to User Directories group box, enter the following:
    ODBC Search Specification

    Name=%s

    This entry instructs CA SiteMinder® Federation Standalone to replace the variable (%s) with the value of the Name ID attribute from the assertion and match it with the Name column in the sample users database. If a match is found, the user is disambiguated and allowed to access the target resource.

  4. Click Next to configure single sign-on.