Federation in Access Manager
The Federation component of Access Manager provides an interface for creating, modifying, and deleting authentication domains and service and identity providers (both remote and hosted types) for a federated model. The web interface for the Liberty ID-FF in Access Manager is accessible from the Federation tab in the Access Manager Console, as shown in the following figure.
Figure 2–3 Federation Interface in Access Manager Console
The following steps illustrate the process for creating a federation model using Access Manager:
-
Create an authentication domain.
-
Configure one or more hosted providers that belong to the authentication domain.
-
Configure one or more remote providers that belong to the authentication domain, and include the metadata for the remote providers.
-
Establish the trusted partnership between the providers. A hosted provider can choose to trust a subset of providers, either hosted or remote, that belong to the same authentication domain.
- © 2010, Oracle Corporation and/or its affiliates