Configure a SAML 1.1 Asserting Party

Before you begin

Configure a SAML Identity Asserter V2 in your security realm. See Configure authentication and identity assertion providers.

Create a SAML Asserting Party. See Create a SAML 1.1 Asserting Party.

After you create a SAML Asserting Party in your SAML Identity Asserter V2, you need to configure the properties of the SAML Asserting Party.

To configure a SAML Asserting Party:

In the left pane select Security Realms.
On the Summary of Security Realms page select the name of the realm (for example, myrealm).
On the Settings for Realm Name page select Providers > Authentication.
In the Authentication Providers table select the SAML Identity Asserter V2.
On the Settings for SAML Identity Asserterpage select Management > Asserting Parties and click the Asserting Party you want to configure.
Select Enabled to enable this Asserting Party as a source of SAML assertions. Enabling the Asserting Party causes it to be checked for validity. A partially configured or incorrectly configured Asserting Party can be saved if it is not enabled. Add the Asserting Party's certificates to the certificate registry before you enable the Asserting Party.
Under Profile Configuration, configure parameters for interacting with the source site ITS (and, for Artifact Profile, ARS).
Under Assertion Configuration, configure how to process assertions that will be generated by this SAML Asserting Party.
Click Save.

After you finish

You need to add two trusted certificates to the Identity Asserter V2 certificate registry that are used by this Asserting Party:

The certificate used for signing assertions
The certificate used for signing SAML protocol elements

To configure the Identity Asserter V2 to recognize these trusted certificates, select Management > Certificates to add them to the registry. Be sure to add these certificates before enabling the Asserting Party.

Administration Console Online Help

Configure a SAML 1.1 Asserting Party