Previous Topic: Enable SSL for the IdP Web Server for Artifact Single Sign-on

Next Topic: Protect Federation Web Services at the IdP (required-POST/Artifact)

Enable a Persistent Session to Store Assertions at the IdP

You need to enable a persistent session for the realm that contains the authentication URL that you protected according to the instructions in Protect the Authentication URL. The persistent session is required to store assertions for SAML artifact binding.

If you did not already enable a persistent session when you set up the authentication URL protection, follow this procedure for SAML artifact binding.

To enable a persistent session

  1. Log in to the FSS Administrative UI.
  2. From the Domains tab, expand the domain that contains the realm with the authentication URL, then expand the Realms object.
  3. From the Realms List, select the realm with the authentication URL and from the menu bar select Edit, Properties of Realm.

    The Realm Properties dialog opens.

  4. Select the Session tab.
  5. Click the Persistent Session radio button.
  6. Click OK.
  7. Select the Artifact Binding at the IdP.


Copyright © 2010 CA. All rights reserved. Email CA about this topic