|
|
|
The Name IDs tab is where you configure the Name Identifier, which names a user in a unique way in the SAML assertion. The format of the Name Identifier establishes the type of content used for the ID. For example, the format might be the User DN, in which case the content might be a uid.
Specifies the format for the Name ID. Pick one of the following options:
For a description of each format, see Assertions and Protocols for the OASIS Security Assertion Markup Language (SAML) V2.0 specification (sstc-saml-core-2.0-cd-04.pdf).
Name ID Type Group Box
The Name ID group box contains radio buttons that specify the Name Identifier type. The selections are:
Indicates that the Name Identifier is the value in the Static Value field. Activates the Static Value field; disables other controls.
Indicates the Name Identifier is specified in the Attribute Name field. Activates the Attribute Name field; disables other controls.
Indicates the Name Identifier is specified by an attribute associated with a DN. Activates the User Attribute field, the DN Spec field, and the Allow Nested Groups check box; disables the Static Value field.
Indicates that nested groups are allowed when selecting the DN. Enabled if the DN Attribute Radio Button is selected.
Name ID Fields Group Box
Contains fields that specify information about the selected Name Identifier. The fields in this group box are context-sensitive, being determined according to the Name ID Type selection.
Specifies the static text value that will be used for all name identifiers for this Service Provider.
Specifies the name of the user attribute which contains the name identifier, or the attribute associated with a group or organizational unit DN.
Specifies the group or organizational unit DN to be used for obtaining the associated attribute to be used as the name identifier.
Opens the SiteMinder User Lookup dialog to locate the user group and select a DN to populate the DN Spec field.
| Copyright © 2011 CA. All rights reserved. | Email CA Technologies about this topic |