Previous Topic: Identity Provider Data for a Basic ConfigurationNext Topic: Service Provider Data for a Basic Configuration

Federation Security Services GuideDeploy Federation Using a Manual ConfigurationManual Deployment PrerequisitesIdentity Provider Data for an Advanced Configuration

Identity Provider Data for an Advanced Configuration

The following table contains sample data for more advanced SAML 2.0 features, such as the artifact profile, signing and encrypting assertions.

Identity Provider Component

Sample Network

Your Network

Session server

Server: www.idp.demo

Database type: ODBC

Database Source Information: SiteMinder Session Data Source

User Name: admin

Password: dbpassword

Server:

Database type:

Database Source Information:

User Name:

Password:

SSL-enabled server

Server: www.idp.demo:443

Server Type: IIS 6.0 Web

The web server with the Web Agent Option Pack is SSL-enabled for artifact binding

Server:

Server Type:

Certificate of the Certificate Authority (CA)

Certificate of CA: docCA.crt

DER-encoded Cert: docCA.der

This CA signs the server-side certificate to enable SSL

Certificate of CA:

DER-encoded Cert:

Private key/certificate pair to sign SAML responses

Certificate: post-cert.crt

Private key: post-pkey.der

Password: fedsvcs

Certificate:

Private key:

Password:

Certificate (public key) for encryption

Public key: sp-encrypt.crt

Public key:

Attribute to include in assertion

Attribute: unspecified (default)

Attribute Kind: User DN

Variable Name: firstname

Variable Value: givenname

 

Attribute:

Attribute Kind:

Variable Name:

Variable Value: