SAML for Authentication and SAML for Authorization

This section describes the SAML for Authentication and SAML for Authorization.

If the REALM type is selected as SAML for authentication and SAML for authorization, configure:

1. Navigate to <COMPLIANCE_STUDIO_INSTALLATION_PATH>/bin directory.
2. Open the config.sh file and set the parameters as described in the following table.

   Table 2-6 Parameters of the config.sh file

   Parameter	Significance	Value
   AUTH_REALM	Realm indicates the functional grouping of database schemas and roles that must be secured for an application. Realms protect data from access through system privileges; realms do not give its owner or participant’s additional privileges. The Compliance Studio application can be accessed using the following realms: FCCMRealm Value=AAI FCCSamlRealm Value=SAML	SAML
   AUTH_SAML_DS_DESTINATION	Indicates the SAML IDP URL that the Identity Provider provides after creating the SAML Application.	Provide the IDCS-SSO URL.
   AUTH_SAML_DS_ROLE_ATTRIBUTE	Indicates the SAML client identifier provided by the SAML Administrator for the Role and Attributes information while creating the SAML application for Compliance Studio.	Provide the group name.
   AUTH_AAI_AUTH_URL	Indicates the SAML client identifier provided by the SAML Administrator for the Logout URL information while creating the SAML application for Compliance Studio.	Provide the IDCS-SLO URL.

3. Reinstall Compliance Studio with updated configuration.
4. Restart Compliance Studio.