Configure a SAML Relying Party

Before you begin

Configure a SAML Credential Mapping V2 provider in your security realm. See Configure Credential Mapping Providers.

Create a SAML Relying Party. See Create a SAML Relying Party.

After you create a SAML Relying Party in your SAML Credential Mapping V2 provider, you need to configure properties of the SAML Relying Party.

To configure a SAML Relying Party:

In the left pane select Security Realms.
On the Summary of Security Realms page select the name of the realm (for example, myrealm).
On the Settings for Realm Name page select Providers > Credential Mapping.
In the Credential Mapping Providers table select the SAML Credential Mapping V2 provider.
On the Settings for SAML Credential Mapping Provider page select Management > Relying Parties and click the Relying Party you want to configure.
Select Enabled to allow this Relying Party to request SAML assertions. Enabling the Relying Party causes it to be checked for validity. A partially configured or incorrectly configured Relying Party can be saved if it is not enabled. Add the Relying Party's certificates to the certificate registry before you enable the Relying Party.
Under Profile Configuration, configure how this Relying Party interacts with the destination site ACS. If you require the Relying Party to use a trusted certificate to access the ARS, by setting the Assertion Retrieval SSL Certificate Alias, you should also add the trusted certificate to the SAML Credential Mapping V2 provider's certificate registry, using the Management > Certificates page.
Under Assertion Configuration, configure the assertions that will be generated for this SAML Relying Party.
Click Save.

After you finish

If you want to require this SAML Relying Party to use a trusted SSL client certificate, select Management > Certificates to add trusted certificates to the registry.