|
|
|
To use a Basic over SSL scheme to protect the Assertion Retrieval Service (SAML 1.x) and the Artifact Resolution Service (SAML 2.0), no additional configuration is required at the producer/Identity Provider. A set of default policies are already configured when you install the Policy Server.
At the consumer/Service Provider, there is also no configuration required, provided you can use one of the default root Certificate Authorities (CAs) already in the smkeydatabase, which is used to establish an SSL connections between the consumer/Service Provider and the producer/Identity Provider. If you want to use your own root CA instead of a default CA, you have to import the CA certificate into the smkeydatabase.
| Copyright © 2010 CA. All rights reserved. | Email CA about this topic |