Index (Sun Java System Access Manager 7 2005Q4 Federation and SAML Administration Guide)

Sun Java System Access Manager 7 2005Q4 Federation and SAML Administration Guide


A

	Access Manager
		and federation ( )
		and Liberty-based web services ( )
		implementation of Liberty Alliance Project ( )

	Access Manager documentation set ( )

	account federation, definition ( )

	affiliate entity
		See also entities
		configuring ( )

	affiliation, definition ( )

	`ambulkfed`, See bulk federation

	`amSAML.xml` ( )

	API
		Authentication Web Service ( )
		client for Discovery Service ( )
		common security ( )
		common service ( )
		Data Services Template ( ) ( )
		Discovery Service ( )
		federation ( )
		Interaction Service ( )
		PAOS binding ( )
		SAML ( )
		SOAP Binding Service ( )

	architecture
		Discovery Service ( )
		SAML ( )

	Artifact Timeout ( )

	Assertion Skew Factor For `notBefore` Time ( )

	Assertion Timeout ( )

	assertion types, and SAML ( )

	Attribute Mapper ( )

	attribute provider, definition ( )

	attributes
		Authentication Web Service ( )
		Discovery Service ( )
		Liberty Personal Profile Service ( )
		SOAP Binding Service ( )

	authentication and authentication context ( )

	authentication context, definition ( )

	authentication domain, definition ( )

	authentication domains, overview ( )

	Authentication Service Specification, overview ( )

	authentication services
		Authentication Service (non-Liberty) ( )
		Authentication Web Service (Liberty) ( )

	Authentication Web Service
		API ( )
		attribute ( )
		extract ( )
		or Authentication Service (non-Liberty) ( )
		overview ( )
		process ( )
		sample ( ) ( )
		schema file ( )
		XML service file ( )

	Authorizer ( )

	Authorizer interface ( ) ( )

	auto-federation ( ) ( )


B

	basic authentication ( )

	bootstrapping Discovery Service ( )

	bulk federation ( ) ( )


C

	circle of trust, definition ( )

	client, definition ( )

	client API
		Data Services Template ( )
		Discovery Service ( )

	Client Profiles Specification, overview ( )

	common domain
		definition ( )
		overview ( )

	common domain cookie ( )

	common domain services
		configuring properties ( )
		configuring URLs ( )
		installation ( )

	common security API ( )

	common service interfaces ( )

	concepts, Liberty Alliance Project ( )

	containers ( )

	customize, graphical user interface ( )


D

	data services
		See also Data Services Template
		API ( )
		developing ( )
		Liberty Employee Profile Service ( )
		Liberty Personal Profile Service ( )
		overview ( )

	Data Services Template ( )
		API ( )
		client API ( )

	Data Services Template Specification, overview ( )

	Default64ResourceIDMapper ( )

	DefaultDiscoAuthorizer class ( )

	DefaultHexResourceIDMapper ( )

	defederation, definition ( )

	definitions
		discovery entries ( )
		federation ( )
		identity ( )
		identity federation ( )
		Liberty Alliance Project concepts ( )
		provider federation ( )

	deploying Liberty-based system ( )

	developing data services ( )

	Directory Server documentation ( )

	DiscoEntryHandler interface ( )

	discovery entries ( )
		as dynamic attributes ( )
		as user attributes ( )
		definition ( )
		for bootstrapping ( )

	Discovery Service
		API ( )
		architecture ( )
		attributes ( )
		bootstrapping ( )
		client API ( )
		discovery entries ( ) ( )
		extract ( )
		overview ( )
		process ( )
		resource offerings ( )
		sample ( )
		XML service files ( )

	Discovery Service Specification, overview ( )

	documentation, Access Manager ( )

	dynamic identity provider proxying ( ) ( )


E

	employee profile service sample ( )

	entities
		configuring affiliate ( )
		configuring provider ( )
		creating ( )
		overview ( )

	entity descriptors, See entities


F

	federated identity, definition ( )

	federation
		affiliate entity
			configuring ( )
		and single sign-on ( )
		API ( )
		authentication domains ( )
		auto-federation ( )
		bulk federation ( )
		definition ( )
		dynamic identity provider proxying ( )
		entities ( )
			creating ( )
		entities and authentication domains ( )
		features of ( )
		graphical user interface ( )
		in Access Manager ( )
		pre-login process ( )
		pre-login URL ( )
		process of ( )
		provider entity
			configuring ( )
		sample environment ( )
		samples ( )

	federation, definition of ( )

	federation API ( )

	federation cookie, definition ( )

	federation termination, definition ( )

	Federation Termination Notification Protocol, overview ( )


G

	global logout ( )

	graphical user interface, federation ( )


I

	identifiers and name registration ( )

	identity, definition ( )

	identity, definition of ( )

	identity federation, definition ( )

	identity federation, definition of ( )

	identity federation and single sign-on ( )

	identity provider, definition ( )

	identity service, definition ( )

	installation, common domain services ( )

	Interaction Service ( )

	Interaction Service Specification, overview ( )

	interfaces
		Authentication Web Service ( )
		Authorizer ( ) ( )
		common service ( )
		DiscoEntryHandler ( )
		Discovery Service ( )
		request handler ( )
		ResourceIDMapper ( ) ( )


L

	Liberty Alliance Project
		concepts ( )
		Liberty Identity Federation Framework ( )
		Liberty Identity Service Interface Specifications ( )
		Liberty Identity Web Services Framework ( )
		overview ( )
		SAML comparison ( )
		service schema files ( )
		specifications ( )

	Liberty Alliance Project specifications ( )

	Liberty-based system deployment ( )

	Liberty-based web services, in Access Manager ( )

	Liberty Employee Profile Service ( )
		schema file ( )

	Liberty-enabled client, definition ( )

	Liberty-enabled proxy, definition ( )

	Liberty ID-FF Bindings and Profiles, overview ( )

	Liberty ID-FF Protocols and Schema, overview ( )

	Liberty ID-SIS Employee Profile Service Specification, overview ( )

	Liberty ID-SIS Personal Profile Service Specification, overview ( )

	Liberty Identity Federation Framework, overview ( )

	Liberty Identity Service Interface Specifications, overview ( )

	Liberty Identity Web Services Framework, overview ( )

	Liberty Personal Profile Service ( )
		attributes ( )
		extract ( )
		schema file ( )

	Liberty process sample ( )


M

	Metadata Description, schema file ( )


N

	name identifier, definition ( )

	Name Identifier Mapping Protocol, overview ( )

	name registration ( )

	Name Registration Protocol, overview ( )


O

	overview
		authentication and authentication context ( )
		authentication domains ( )
		Authentication Service Specification ( )
		Authentication Web Service ( )
		auto-federation ( ) ( )
		bulk federation ( ) ( )
		Client Profiles Specification ( )
		common domain ( )
		common domain cookie ( )
		common domain services
			installation ( )
			properties ( )
			URLs ( )
		data services ( )
		Data Services Template ( )
		Data Services Template Specification ( )
		Discovery Service ( )
		Discovery Service Specification ( )
		dynamic identity provider proxying ( ) ( )
		entities ( ) ( )
		federation API ( )
		federation features ( )
		federation management ( )
		federation process ( )
		Federation Termination Notification Protocol ( )
		global logout ( )
		identifiers and name registration ( )
		identity federation and single sign-on ( )
		implementation of Liberty Alliance Project ( )
		Interaction Service ( )
		Interaction Service Specification ( )
		Liberty Alliance Project ( )
		Liberty Alliance Project specifications ( )
		Liberty Employee Profile Service ( )
		Liberty ID-FF Bindings and Profiles ( )
		Liberty ID-FF Protocols and Schema ( )
		Liberty ID-SIS Employee Profile Service Specification ( )
		Liberty ID-SIS Personal Profile Service Specification ( )
		Liberty Identity Federation Framework ( )
		Liberty Identity Service Interface Specifications ( )
		Liberty Identity Web Services Framework ( )
		Liberty Personal Profile Service ( )
		Name Identifier Mapping Protocol ( )
		Name Registration Protocol ( )
		PAOS binding ( )
		pre-login URL ( )
		public interfaces ( )
		SAML ( )
		samples ( )
		Security Mechanisms Specification ( )
		Single Logout Protocol ( )
		Single Sign-On and Federation Protocol ( )
		SOAP Binding Service ( )
		SOAP Binding Specification ( )


P

	PAOS binding ( )
		PAOS or SOAP ( )
		sample ( ) ( )

	PAOS Binding Service, schema file ( )

	patches, Solaris ( )

	policy creation ( )

	pre-login process ( )

	pre-login URL ( )

	principal, definition ( )

	procedures
		create policy for DefaultDiscoAuthorizer ( )
		store discovery entries ( ) ( ) ( )

	process
		Authentication Web Service ( )
		Discovery Service ( )
		federation ( )
		federation and single sign-on ( )
		pre-login ( )
		SOAP Binding Service ( )

	profile, definition ( )

	profile types
		and SAML ( )
		web artifact profile ( )
		web POST profile ( )

	provider entity
		See also entities
		configuring ( )

	provider federation, definition ( )

	provider federation, definition of ( )

	pseudonym
		definition
			See name identifier

	public interfaces ( )


R

	receiver, definition ( )

	related JES product documentation ( )

	request handler ( )

	RequestHandler interface ( )

	resource offering, definition ( )

	resource offerings ( )

	ResourceID Mapper ( )

	ResourceIDMapper interface ( ) ( )


S

	SAML ( )
		`amSAML.xml` ( )
		API ( )
		architecture ( )
		Artifact Timeout ( )
		Assertion Skew Factor For `notBefore` Time ( )
		assertion types ( )
		AssertionTimeout ( )
		Liberty comparison ( )
		overview ( )
		profile types ( )
			web artifact profile ( )
			web POST profile ( )
		SAML Artifact Name ( )
		SAML SOAP receiver ( )
			SOAP messages ( )
		samples ( )
		Sign SAML Assertion ( )
		Sign SAML Request ( )
		Sign SAML Response ( )
		site Identifiers ( )
		Target Specifier ( )
		target URLs ( )
		trusted partners ( )
		using ( )

	SAML Artifact Name ( )

	SAML SOAP receiver ( )
		SOAP messages ( )

	sample use case ( )

	samples
		Authentication Web Service ( ) ( )
		Discovery Service ( )
		employee profile service ( )
		federation ( ) ( )
		PAOS binding ( ) ( )
		SAML ( )
		use case process ( )
		web service consumer ( )

	samples overview ( )

	schema files ( )
		Authentication Web Service schema ( )
		Employee Profile schema ( )
		Metadata Description ( )
		PAOS Binding Service ( )
		Personal Profile schema ( )
		SOAP Binding schema ( )

	Security Mechanisms Specification, overview ( )

	sender, definition ( )

	server, definition ( )

	service provider, definition ( )

	service schema files ( )

	Sign SAML Assertion ( )

	Sign SAML Request ( )

	Sign SAML Response ( )

	single logout, definition ( )

	Single Logout Protocol, overview ( )

	single sign-on, definition ( )

	Single Sign-On and Federation Protocol, overview ( )

	single sign—on, and federation ( )

	site identifiers ( )

	SOAP Binding, extract ( )

	SOAP Binding Service
		API ( )
		attributes ( )
		overview ( )
		PAOS or SOAP ( )
		process ( )
		request handler ( )
		schema file ( )
		XML service file ( )

	SOAP Binding Specification, overview ( )

	SOAP messages ( )

	Solaris
		patches ( )
		support ( )

	specifications (Liberty Alliance Project) ( )
		Liberty Identity Federation Framework ( )
		Liberty Identity Service Interface Specifications ( )
		Liberty Identity Web Services Framework ( )

	support, Solaris ( )


T

	Target Specifier ( )

	target URLs ( )

	trusted partners ( )

	trusted provider, definition ( )


U

	use cases ( )
		sample process ( )


W

	web artifact profile ( )

	web POST profile ( )

	web service consumer, definition ( )

	web service consumer sample ( )

	web service provider, definition ( )

	web services (Liberty-based), in Access Manager ( )


X

	XML service files
		`amSAML.xml` ( )
		Authentication Web Service ( )
		Discovery Service ( )
		SOAP Binding Service ( )

	XSD files ( )