FederationFederation Security Services GuideAuthenticate SAML 1.x Users at a ConsumerHow To Protect a Resource with a SAML 1.x Authentication Scheme › Form the Policy to Protect the Target Resource

Previous Topic: Create a Response Associated with the Rule

Next Topic: Configure SiteMinder as a SAML 2.0 Identity Provider
Form the Policy to Protect the Target Resource

The general process for creating the policy is as follows:

Note: This assumes that a user directory has already been configured.

  1. Create a SAML 1.x authentication scheme.
  2. Associate the SAML authentication scheme with a realm.
  3. Within the realm, create one rule with a Web Agent action or two rules, one with a Web Agent action and the other as an authenticating event with the OnAuthReject action.
  4. Optionally, if you configured an OnAuthReject rule, configure a Web-Agent-OnReject-Redirect Response attribute that contains a value of a URL where the rejected user should be redirected. We recommend using a static attribute value.
  5. Create a policy grouping the realm, rule, and response together.
  6. Exit the Policy Server User Interface.