To Enable an Identity Provider for SAML v2 Bootstrapping of Liberty ID-WSF

1. If metadata for the identity provider you are configuring has not yet been imported, or signing and encryption certificate aliases have not been configured in the for the existing identity provider metadata, create the identity provider in the OpenSSO Enterprise console or with the ssoadm command line utility. See Creating an Entity.

2. In the OpenSSO Enterprise Console, click the Federation tab.

3. Click the hosted Identity Provider you wish to edit.

4. Check Discovery Bootstrapping Enabled check box.

5. Click Save.

6. Go to the Configuration tab.

7. Click the Servers and Sites tab.

8. Click Default Server Settings.

9. Click the Advanced tab.

10. If the com.sun.identity.liberty.ws.util.providerManagerClass property does not exist in the Advanced attribute table, add it and define the following value for it:

    com.sun.identity.liberty.ws.util.providerManagerClass = com.sun.identity.saml2.plugins.SAML2ProviderManager

    ---

    Note –

    By default, this property has no value. In this case, Liberty ID-WSF 1.1 works with ID-FF providers. After you change this value, ID-WSF 1.1 works with SAMLv2 providers but not ID-FF providers. To switch back to ID-FF providers, delete the attribute from the Advanced attribute table.

    ---

11. Click Save.

12. Restart the web container.