39.3 Managing General Federation Settings

The following topics describe how to manage general Federation Settings:

39.3.1 About Managing General Federation Settings

You view and manage general federation properties on the Federation Settings page of the console.

Figure 39-1 shows the General section of the Federation Settings page.

Table 39-2 describes each element on the General section of the Federation Settings page.

Table 39-2 General Federation Settings

Element Description

Provider ID

This is the provider ID of this federation server. For example, http://foo.example.com/fed.

Signing Key

This key is used to sign assertions.

Encryption Key

This key is used to decrypt incoming messages.

Custom Trust Anchor File

Specifies a keystore that contains trusted root certificates use in federation. The default trust store is $DOMAIN_HOME/config/fmwconfig/amtruststore.

In most cases, the default trust anchor should be enough. If necessary, specify the location of an alternate keystore to use.

Note: When you use a custom trust anchor keystore, it will not be replicated automatically across the cluster. You must manage replication of this keystore.

Export SAML 2.0 Metadata

After changes to the General settings, you must export the metadata for use by federation partners.

See Also: Exporting Metadata

39.3.2 Managing General Federation Settings

General settings include basic information about a provider. Prerequisites for General Federation Settings

None. Setting or Modifying General Settings for Federation

You can set or modify General settings for Federation.

To set or modify:

  1. In the Oracle Access Management Console, click Federation at the top of the window.
  2. In the Federation console, Select Federation from the drop-down list in the Settings section.
  3. On the Federation Settings page, enter General Settings values for your (Table 39-2).
  4. Click Apply to save your changes.
  5. Proceed to "Managing Proxy Settings for Federation".