Federation Security Services Guide › Configure SiteMinder as a Resource Partner › How to Configure a SiteMinder Resource Partner

How to Configure a SiteMinder Resource Partner

Configuring SiteMinder as a WS-Federation Resource Partner invloves the following tasks:

1. Complete the WS-Federation authentication scheme prerequisites.
2. Select the authentication scheme type and assign it a name.
3. Specify the namespace for users being authenticated with the WS-Federation authentication scheme.
4. Configure single sign-on.
5. Complete any option configuration tasks.

Configure an authentication scheme for each Account Partner that is a federation partner and generates assertions. Bind each scheme to a realm, which includes the URLs of the target resources that users request. You can do this task on a per Account Partner basis or can create a single custom authentication scheme and single realm. Protect these resources with a SiteMinder policy.

Tips:

Certain parameter values at the Account Partner and Resource Partner are required to match for the configuration to work. A list of those parameters is located in Configuration Settings that Must Use the Same Values.

Verify that you are using the correct URLs for FWS servlets. See the list in Federation Web Services URLs Used in SiteMinder Configuration.

More Information:

How To Protect a Target Resource with a WS-Federation Authentication Scheme

Optional Tasks to Configure a SiteMinder Resource Partner

The optional tasks for configuring SiteMinder as a Resource Partner include:

• Customize assertions using the Message Consumer Plug-in.
• Redirect failed authentication attempts.