1. Help Reference for Oracle Access Management Consoles
  2. Federation Help
  3. Federation Help
  4. Create Service Provider Partner

7.1 Create Service Provider Partner

Use the Create Service Provider Partner page to define a partner profile when Identity Federation is configured as an Identity Provider (IdP). You can specify service details manually or load them from a metadata file.

General

Following table describes elements in the General section of the Create Service Provider Partner page:

Element Description

Name

Type a provider name.

Enable Partner

Select whether this partner is currently participating in the federation.

Description

Type a short description that will help you or another Administrator identify this provider in the future.

Service Information

Following table describes elements in the Service Information section of the Create Service Provider Partner page:

Element Description

Protocol

Choose from the following menu options in the drop-down:

  • SAML 1.1
  • SAML 2.0
  • OpenID 2.0

Service Details

Select any of the following:

  • Load from Provider Metadata - You can specify service details by loading an XML metadata file.

  • Enter Manually- You can specify service details by entering values manually.

    Applies to SAML 2.0 only.

Metadata File

Click Browse and select a file to use.

This field appears only if Load from Provider Metadata option is selected.

Applies to SAML 2.0 only.

Provider ID

The Provider ID of the remote Service Provider.

Applies to SAML 2.0 and SAML 1.1 only.

Assertion Consumer URL

Type the URL to which Assertion responses will be sent.

Applies to SAML 2.0 and SAML 1.1 only.

Load Signing Certificate

Click Browse and select a file to upload the signing certificate used by this SP.

Only visible when Enter Manually is selected. Applies to SAML 2.0 and SAML 1.1 only.

Logout Request URL

Type the URL to which logout requests will be sent.

Applies to SAML 2.0 only.

Logout Response URL

Type the URL to which responses to logout requests will be sent.

Applies to SAML 2.0 only.

Load Encryption Certificate

Click Browse and select a file to upload the encryption certificate used by this SP.

Only visible when Enter Manually is selected. Applies to SAML 2.0 only.

Realm

This is the URL identifying an OpenID SP.

Applies to OpenID 2.0 only.

Endpoint URL

Type the URL to which the IdP will redirect the user with the OpenID Assertion.

Applies to OpenID 2.0 only.

NameID Format

Following table describes the elements in the NameID Format section of the Create Service Provider Partner page:

Element Description

NameID Format

Indicates which NameID format should be used for this SP.

Applies to SAML 2.0 and SAML 1.1 only.

Custom NameID Format URI

Only visible when Custom option is selected from the NameID Format menu.

Applies to SAML 2.0 and SAML 1.1 only.

NameID Value

Indicates how to populate the NameID value.

  • If User ID Store Attribute is selected, specify the user attribute to be used.

  • If Expression is selected, enter the expression to be used.

Mapping Options

Following table describes elements in the Mapping Options section of the Create Service Provider Partner page:

Element Description

Attribute Profile

Indicates the attribute mapping profile to which the partner is bound.

Click the search icon to open a Search window from which you can search for one or more previously configured Attribute Profiles. Select the profile and click OK to select or click Cancel to cancel the selection.

Save

Click Save to create the remote SP partner profile.

Related Topics

Managing Identity Federation Partners in Administrator's Guide for Oracle Access Management.