Federation Security Services Guide › Identify Service Providers for a SAML 2.0 Identity Provider › Configuration Checklist at the Identity Provider › Optional Configuration Tasks for Identifying a Service Provider

Optional Configuration Tasks for Identifying a Service Provider

The following are optional tasks for identifying a Service Provider:

• Configure single sign-on restrictions:
  • Set IP address restrictions to limit the addresses used to access Service Providers.
  • Configure time restrictions for Service Provider operations.
• Enable enhanced client or proxy profile.
• Configure attributes for inclusion in assertions.
• Configure single logout (SLO).
• Configure the Identity Provider Discovery profile.
• Encrypt the Name ID in the assertion and/or the entire assertion
• Sign the assertion and/or the entire assertion response.
• Sign the artifact resolve message and/or the artifact response.
• Customize a SAML response using the Assertion Generator plug-in.