After editing the General attributes of an affiliate entity, you can create the affiliation. This might entail modifying the defined Common attributes, or adding members to the affiliation. The starting point is the Entity Descriptors screen under Federation.
Click on the name of a configured affiliate entity to modify its profile.
The entity's profile page is displayed.
Select Affiliate from the View menu.
Modify values for the Common Attributes.
Type a new value for the URL identifier of the affiliation, if applicable. The value of this attribute is the name provided when you created the entity.
Type a new value for the Provider ID of the owner or parent operator of the affiliation. This value points to additional affiliation metadata.
Type the expiration date for the metadata pertaining to the provider. Use Coordinated Universal Time (UTC) in the format yyyy-mm-ddThh:mm:ss.SZ. For example, 2004-12-31T12:30:00.0Z.
Type the maximum amount of time the entity can be cached. The value is defined in the format PnYnMnDTnHnMnS, where n is an integer. For example, P1Y2M4DT9H8M20S defines the cache duration as 1 year, 2 months, 4 days, 9 hours, 8 minutes, and 20 seconds.
Type the key alias used to sign requests and responses.
Type the security certificate alias. Certificates are stored in a Java keystore file. Each specific certificate is mapped to an alias that is used to fetch the certificate.
Type the length for keys used by the web service consumer when interacting with another entity.
Choose the method of encryption. The choices include:
None
AES
DES
3DES
Add members to the affiliation from those available.
Click Save.