Prior to configuring Oracle Access Manager for Federated Identity using SAML, you need to enable Identity Federation and Security Token Service.
Enabling Security Token Services provides the following capabilities across security domains:
- Cross domain SSO for browser based Web SSO flows
- Cross domain Web Services Security (WSS) for SOAP clients and servers by means of the WS-Trust protocol
Enabling Identity Federation establishes trust between services by exchanging the following:
- X.509 certificates used for sign/verify and encrypt/decrypt the Federated messages
- Locations of the Federated services
- SAML 2.0 metadata
To enable identity federation:
- In the Launch Pad tab, under Configuration, select the Available Services.
- In the Available Services tab, click Enable for the following services:
- Identity Federation
- Security Token Service