Previous Topic: Request Processing with a Proxy Server at the SPNext Topic: Enable Client Certificate Authentication for the Back Channel(optional)

Federation Security Services GuideConfigure SiteMinder as a SAML 2.0 Service ProviderRequest Processing with a Proxy Server at the SPConfigure Request Processing with a Proxy Server at the SP

Configure Request Processing with a Proxy Server at the SP

To support federated environments that use a proxy server at the SP

  1. Log in to the FSS Administrative UI.
  2. Access the SAML 2.0 Auth Scheme Properties dialog.

    The SAML 2.0 Auth Scheme Properties dialog opens.

  3. Select the Advanced tab.
  4. Enter a partial URL for the proxy server, in the format <protocol>://<authority> in the Server field of the Proxy section.

    For example, the proxy server configuration would be: 

    http://proxy.domain.com:9090

    If your network includes the SPS federation gateway, the Server field must specify the SPS federation gateway host and port, for example,

    http://sps_federation_gateway.domain.com:9090
  5. Click OK to save your changes.

The Server configuration affects the URLs for the following services at the SP:

The Server value becomes part of the URL used to verify SAML attributes like the Destination attribute. Essentially, if you are using a proxy server for one URL, you need to use it for all these URLs.