AffiliateName

SampleAffiliate

Naming the Affiliate

AffiliatePassword

No default

Setting the Affiliate Password

AffiliateResource

transpolar

examples

Designating Affiliate Resources

AllowCacheHeaders

no

Allowing HTTP Header Caching

AllowPOSTs

no

Allowing Post Actions

AllowUnknownUsers

no

Permitting Unknown Users Access to the Consumer

Append

no

Appending Messages to Log Files

AppendTarget

no

Appending the Original Affiliate Destination to the NoAccessURL

AssertionAudience

http://www.netegrity.com/SampleAudience

Designating the Assertion Issuer and Audience

AssertionIssuer

http://www.netegrity.com/SiteMinder

Designating the Assertion Issuer and Audience

AuthenticationScheme

Basic

Determining How the Consumer Authenticates to the Producer

BadQueryChars

No default

Designating Bad Query Characters

BadURLChars

//,./,/.,/*,*.,~,\,%00-%1f,%7f-%ff,%25

Designating Bad URL Characters

BadCSSChars

No default

Protecting Web Sites Against Cross-Site Scripting

CookieDomain

No default

Specifying Affiliate Resources that Use Similar Responses and Headers

CompanySourceID

Hex value—Netegrity source ID

Setting the Company Source ID

CSSChecking

yes

Protecting Web Sites Against Cross-Site Scripting

CSSErrorFile

No default

Protecting Web Sites Against Cross-Site Scripting

CustomMessageFile

saml_affiliate agent_home\messages\iso-8859-1.msg

Locating a Custom Message File

Enabled

no

Enabling and Disabling the SAML Affiliate Agent

EnableOtherAuthTrans

no

Enabling the Agent to Work with Multiple AuthTrans Functions

GetAssertionService

No default

Configuring the Affiliate to Retrieve a SAML Assertion

GetPortFromHeaders

no

Using the HTTP HOST Request for the Port Number

HTTPHeaderEncodingSpec

UTF-8, no wrapping

Encoding and Wrapping HTTP Headers

HTTPSPorts

443

Defining HTTPS Ports

HTTPWrapSpec

RFC-2047

Encoding and Wrapping HTTP Headers

IgnoreExtensions

.gif, .jpeg, .png, .ccc

Specifying Ignored File Extensions

KeyRolloverInterval

900 seconds

Configuring the Key Provider Library

KeystoreLocation

No default

Setting the Location of the Key Store

KeyModel

SharedSecret

Defining the Key Model for Encrypting Cookies

KeystorePassword

netegrity

Modifying the Key Store Password

LegacyVariables

no

Setting HTTP Header Syntax for Legacy Variables

LogLevel

0

Specifying Log Levels

LogFile

saml_affiliate_agent_home/log/affiliate.log

Recording Messages in a Log File

LogOffUri

logout.htm

Logging Users Out from a Session

LogToFile

yes

Recording Messages in a Log File

LogToConsole

yes

Displaying Log Messages in a Console (Windows only)

MaxSSLConnections

5

Specifying the Number of SSL Connections for Communication

MatchingRule

StrictPrefix

Defining the Matching Rule for the Affiliate Resource

The MatchingRule attribute, required as part of the NotificationURL, indicates how the SAML Affiliate Agent compares each URL, for which the user gained access, to the NotificationURL.

NoAccessURL

No default

Denying a User Access to an Consumer Resource

NotificationService

No default

Specifying the Notification Service

NotificationURL

No default

Specifying the Notification Service

PersistenceLibrary

No default

Preserving Assertion Data

PortalQueryURL

No default

Redirecting Users without Valid Affiliate Cookies to the Producer

PortalName

No default

Specifying the Portal Name

RequireActivePortalSession

no

Configuring an Active Portal Session

SessionModel

Default

Configuring SiteMinder Sessions for Federated Single Sign-on

SessionIdleTimeout

300 seconds

Default Session Overview

SessionMaxTimeout

600 seconds

Default Session Overview

SocketTimeout

300,000 milliseconds

Closing the Connection After an Assertion is Retrieved for Artifact SSO

SSLInterceptorURL

No default

Returning Users to the Affiliate after Obtaining a SAML Artifact

SharedSecret

No default

Specifying the Key Model

SessionProviderService

No default

Specifying the Session Provider Service