FederationFederation Security Services GuideAuthenticate SAML 1.x Users at a ConsumerHow To Protect a Resource with a SAML 1.x Authentication SchemeHow To Assign a SAML 1.x Authentication Scheme to a Realm › Configure a Unique Realm for Each SAML 1.x Authentication Scheme

Previous Topic: How To Assign a SAML 1.x Authentication Scheme to a Realm

Next Topic: Configure a Single Target Realm for All SAML 1.x Auth. Schemes
Configure a Unique Realm for Each SAML 1.x Authentication Scheme

The process for configuring a unique realm for each SAML authentication scheme (artifact or profile) follows the standard instructions for creating realms in the Policy Server User Interface.

To create a realm for each SAML authentication scheme

  1. Create a policy domain that will contain the realm with the target resources.
  2. Create a realm in the domain you created in the previous step, noting the following:
    1. Select the Web Agent protecting the web server where the target federation resources reside for the Agent field.
    2. Select the SAML authentication scheme for the Authentication Scheme field.
  3. Create a rule for the realm.
  4. Include the realm and associated rule in a policy that protects the target resource.

The resources are now protected by a SAML authentication scheme.