Both Service Provider and Identity Provider can set up the trust base.
Service Provider and Identity Provider both achieve single sign-on using the SAMLv2 protocol (persistent and transient).
Service Provider and Identity Provider must achieve single logout using SAMLv2 protocol.
The extended configuration metadata define the attributes needed for this feature.
Required APIs are provided to access the attributes defined in the extended configuration metadata.