Federation Security Services Guide › Deploying Federation without the FSS Sample Application › Add Functionality to the Federation Deployment › Configure SAML 2.0 Artifact Single Sign-on › Enable SSL for the IdP Web Server for Artifact Single Sign-on
Enable SSL for the IdP Web Server for Artifact Single Sign-on
Enable SSL for the web server where the Web Agent Option Pack is installed. This ensures that the back channel over which the assertion is passed is secure.
To enable SSL at the IdP Web server
- Create a server-side certificate request.
- Have the Certificate Authority sign the server-side certificate.
- Specify the server-side certificate in the web server's configuration.
For the IIS Web server used in the sample network, the IIS Certificate Wizard would be used.
- Enable a Persistent Session to Store Assertions at the IdP.