Federation Security Services GuideIdentify Service Providers for a SAML 2.0 Identity ProviderConfigure Required General Information › Set a Password for SAML Artifact Back Channel Authentication

Previous Topic: Single Logout Request Validity

Next Topic: WebLogic Configuration Required for Back Channel Authentication

Set a Password for SAML Artifact Back Channel Authentication

If you use the HTTP-Artifact binding for SAML 2.0 single sign-on, the assertion is sent from the Identity Provider, across a secure back channel, to the Service Provider. You need to configure a password for the Service Provider to be granted access to the Artifact Resolution Service, which will resolve the artifact and retrieve the assertion.

Note: The password is only relevant if you use Basic or Basic over SSL as the authentication method across the back channel; however, you must configure a password regardless of which authentication method you plan to use.

To configure a password for HTTP-Artifact binding:

  1. Open the SAML Service Provider Properties dialog.
  2. On the General tab, click Configure Backchannel Authentication.

    The Backchannel Properties dialog opens.

    Note: The Configure Backchannel Authentication button is only active if you select HTTP-Artifact on the SSO tab.

  3. Enter a value for the following fields:
  4. Click OK.

    You return to the SAML Service Provider Properties dialog.

Copyright © 2010 CA. All rights reserved. Email CA about this topic