Service Provider Data for an Advanced Configuration

Federation Security Services Guide › Deploy Federation Using a Manual Configuration › Manual Deployment Prerequisites › Service Provider Data for an Advanced Configuration

Service Provider Data for an Advanced Configuration

The following table lists sample data for more advanced SAML 2.0 features, such as setting up the artifact profile, signing and encrypting assertions.

Service Provider Component	Sample Network	Your Network
Artifact Resolution Service	Resolution Service: https://www.idp.demo:443/ affwebservices/saml2artifactresolution	Resolution Service:
Certificate of Certificate Authority (CA)	Certificate of CA: docCA.crt DER-encoded cert: docCA.der This CA signs the server-side certificate to enable SSL	Certificate of CA: DER-encoded cert:
Certificate (public key) Used to verify signature of SAML responses	Certificate: post-cert.crt	Certificate:
Private key/certificate pair Used for decryption and digital signing	Private key: sp-encrypt.der Public key: sp-encrypt.crt Password: fedsvcs Issuer DN: CN=Certificate Manager,OU=IAM,O=CA.COM Serial Number: 008D 8B6A D18C 46D8 5B	Private key: Public key: Password: Issuer DN: Serial Number:

Service Provider Component

Sample Network

Your Network

Artifact Resolution
Service

Resolution Service:

https://www.idp.demo:443/
affwebservices/saml2artifactresolution

Resolution Service:

Certificate of Certificate Authority (CA)

Certificate of CA: docCA.crt

DER-encoded cert: docCA.der

This CA signs the server-side certificate to enable SSL

Certificate of CA:

DER-encoded cert:

Certificate (public key)

Used to verify signature of SAML responses

Certificate: post-cert.crt

Certificate:

Private key/certificate pair

Used for decryption and digital signing

Private key: sp-encrypt.der

Public key: sp-encrypt.crt

Password: fedsvcs

Issuer DN: CN=Certificate Manager,OU=IAM,O=CA.COM

Serial Number: 008D 8B6A D18C 46D8 5B

Private key:

Public key:

Password:

Issuer DN:

Serial Number: