13.3 Federation Settings
Use the Federation Settings page to:
-
Configure the settings for use by Oracle Access Management Identity Federation.
-
Configure to enable the Identity Federation functionality available from the Oracle Access Management Console.
The following table describes the elements in the Federation Settings page:
| Element | Description |
|---|---|
|
General |
General federation settings include basic information about the provider and the keys used to send assertions. |
|
Proxy |
Proxy settings enable you to set up a proxy server for federation. |
|
Keystore |
Keystore settings enable you to create aliases (a short hand notation) for keys in the keystore. |
|
Apply |
Click Apply to submit your changes. |
General
This section of the Federation Settings page, you can view and manage general federation properties. The following table describes the elements in the General section of the Federation Settings page:
| Element | Description |
|---|---|
|
Provider ID |
Specify the provider ID of this federation server. For example: |
|
Succinct ID |
This is the succinct ID of the provider. |
|
Signing Key |
Select a key from the drop-down menu, this key is used to sign assertions. |
|
Encryption Key |
Select a key from the drop-down menu, this key is used to decrypt incoming messages. |
|
Custom Trust Anchor File |
Specify a keystore that contains trusted root certificates used in federation. The default trust store is, In most cases, the default trust anchor should be enough. If necessary, specify the location of an alternate keystore to use. Note: When you use a custom trust anc,hor keystore, it will not be replicated automatically across the cluster. You must manage the replication of this keystore. |
|
Export SAML 2.0 Metadata |
Click Export SAML 2.0 Metadata, a dialog box appears where you must specify the file for the exported metadata, Click Save to save your new metadata file. |
Proxy
In this section of the Federation Settings page, you can view and manage a proxy configured for use with federation partners. The following table describes the elements in the Proxy section of the Federation Settings page:
| Element | Description |
|---|---|
|
Enable Proxy |
Check this box to enable the proxy server. Clear this box to disable the proxy function and related fields will be inaccessible for editing. |
|
Host |
Specify a proxy host name. |
|
Port |
Specify the proxy port number. |
|
Non-Proxy Hosts |
Specify a list of hosts for which the proxy should not be used. Use ';' to separate multiple hosts. |
|
Username |
Enter the proxy user name to use when connecting to the proxy. |
|
Password |
Enter the proxy password to use when connecting to the proxy. |
Keystore
In this section of the Federation Settings page, you can view and manage keystores configured for use with federation partners. The following table describes the elements in the Keystore section of the Federation Settings page:
| Element | Description |
|---|---|
|
Keystore Location |
This element specifies the keystore path. |
|
Add |
Click on Add to add a new row to the table. |
|
Delete |
Select a row from the table and click on Delete to remove the row from the table. |
|
Row |
Displays the row number. |
|
Key ID |
Specify the unique key ID. |
|
Alias |
Choose the key alias from the drop-down menu. Note: You can choose one of the aliases that is available in the keystore using the drop-down. |
|
Password |
Specify the key password. |
|
Description |
Provide a brief description of the key, such as its usage type. |
Related Topics
Managing Settings for Identity Federation in Administrator's Guide for Oracle Access Management.