|
|
|
The Encryption tab is where you configure XML encryption for a SAML assertion. If you enable encryption, all data in the assertion is encrypted, including all attribute statements.
Note: If you do not want to encrypt the entire assertion but want to encrypt only individual attribute statements, go to the Attributes tab, select or create an attribute, and check the Encrypted check box for the individual attribute.
The fields on the encryption tab are as follows:
Specifies the Name ID in the assertion is encrypted.
Enables encryption of the assertion.
Specifies the block algorithm to be used for encryption. Choose one of the following:
Specifies the key algorithm to be used for encryption. Choose one:
Note: The minimum key size required to use the rsa-oaep encryption algorithm is a 1024 bits.
Encryption Public Key Certificate Group Box
This group box is where you specify the location of the public certificate of the Service Provider.
Note: You must complete both fields in this group box if either the Encrypt Name ID or Encrypt Assertion option is set or any SAML assertion attribute needs encryption.
Specifies (along with the Serial Number) the Issuer DN of the certificate of the Service Provider in the key store.
Specifies (along with the Issuer DN) the serial number of the certificate of the Service Provider in the key store.
| Copyright © 2011 CA. All rights reserved. | Email CA Technologies about this topic |