SAMLv2 XACML PEP Customization (Sun OpenSSO Enterprise 8.0 Administration Reference)

Sun OpenSSO Enterprise 8.0 Administration Reference

Previous: SAMLv2 XACML PDP Customization
Next: SAMLv2 Attribute Authority Customization

SAMLv2 XACML PEP Customization

XACML PEP contains the following attributes for customization:

Protocol Support Enumeration
Signing Key Alias
Encryption Key Alias
Basic Authorization
Authorization Decision Response Signed
Assertion Encrypted

Protocol Support Enumeration

Displays the XACML PEP release that is supported by this provider.

Signing Key Alias

Defines the key alias that is used to sign requests and responses.

Encryption Key Alias

Defines the key alias to XACML encryption.

Basic Authorization

Basic authorization can be enabled to protect SOAP endpoints. Any provider accessing these endpoints must have the user and password defined in the following two properties: User Name and Password.

Authorization Decision Response Signed

When enabled, this attribute enforces that all responses be signed for the XACML authorization decision.

Assertion Encrypted

When enabled, this attribute enforces that all assertions are to be encrypted.

Previous: SAMLv2 XACML PDP Customization
Next: SAMLv2 Attribute Authority Customization