FederationFederation Security Services GuideConfigure SiteMinder as a SAML 2.0 Identity Provider › Enable Identity Provider Discovery Profile (optional)

Previous Topic: Guidelines for the Single Logout Confirmation Page

Next Topic: Encrypt a NameID and an Assertion

Enable Identity Provider Discovery Profile (optional)

For federated networks that have more than one IdP generating assertions, the Identity Provider Discovery profile enables users to select a specific IdP for authentication.

To enable the Identity Provider Discovery Profile

  1. Log on to the Policy Server User Interface.
  2. Open the Service Provider Properties dialog for the SP you want to modify.
  3. Select the IPD tab.

    The Identity Provider Discovery settings display.

  4. Select the Enable checkbox.

    The fields in the dialog become active.

  5. Fill in the necessary fields and click OK.

    Note: Set the Service URL field to the Identity Provider Discovery Profile servlet, which is:

    https://host:port/affwebservices/public/saml2ipd