Test the Partnership (Artifact SSO)

CA SiteMinder® Federation Standalone Guide › Getting Started with a Simple Partnership › Set Up the Artifact Profile for SSO › Test the Partnership (Artifact SSO)

Test the Partnership (Artifact SSO)

When each side of the partnership is operating, test single sign-on between the two partners.

When IdP1 receives the request, it generates the artifact. The artifact is then sent to the SP1.

After SP1 receives the artifact, it redirects the request back to IdP1. The IdP retrieves the assertion and returns it to SP1.

Create a Web page to Initiate Single Sign-on (Artifact)

For testing purposes, create your own html page with a link that initiates single sign-on. You can initiate single sign-on from the IdP or SP. This example illustrates SP-initiated single sign-on.

Follow these steps:

Create the sample HTML page at the SP site and include a hard-coded link to the AuthnRequest service at the SP, as follows:
<a href="http://sp1.demo.com:9091/affwebservices/public/
saml2authnrequest?ProviderID=idp1.example.com:9090&
ProtocolBinding=urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact>
Link for ARTIFACT Single Sign-on</a>

This link instructs the AuthnRequest Service to redirect the user to the specified Identity Provider to retrieve the user authentication context.
Save the web page under the name testartifact.html.
Copy testartifact.html to the web server document root directory, under the subfolder /spsample.
For this sample network, the target web server is http://spapp.demo:80.

Create a Target Resource

The last step that is required to test single sign-on is to create a target resource.

Follow these steps:

Create the sample HTML page at the SP site and include a message, such as:
<p>Welcome to SP1</p>

<p>Single Sign-on is successful</p>
Save the web page under the name welcome.html.
Copy welcome.html to the web server document root directory, under the subfolder /spsample.
For this sample network, the target web server is http://spapp.demo.com:80.