Previous Topic: Enhanced Client or Proxy Profile Overview (SAML 2.0)Next Topic: Enable Single Logout


Configure ECP at the Service Provider

To configure ECP with SiteMinder, enable the feature at the Identity Provider and the Service Provider. The following procedure is for a SiteMinder Service Provider.

Follow these steps:

  1. When a user requests a protected resource at the Service Provider, direct the request to the AuthnRequest service at the Service Provider. The following URL shows an example:
    https://host:port/affwebservices/public/saml2authnrequest
    
  2. Log in to the FSS Administrative UI at the Service Provider.
  3. Navigate to the SSO tab for the authentication scheme you want to modify.
  4. Fill out the required single sign-on fields to configure single sign-on.
  5. Select the Enhanced Client and Proxy Profile check box.
  6. Click OK.

The SiteMinder Service Provider can now process ECP calls.

Note: A single SAML Service Provider object can handle artifact, POST, SOAP, and PAOS bindings for single sign-on requests. SOAP and PAOS are the bindings for the ECP profile. The Identity Provider and Service Provider determine the binding being used based on the parameters in a request.