You can refer to the use case description, solution summary, components involved, and the linked documentation resources to configure web services federation with Oracle STS as the Identity Provided STS (IP-STS) and Microsoft ADFS 2.0 STS as the Replying Party (RP-STS).
Configure web services federation with Oracle STS as the IP-STS and Microsoft ADFS 2.0 STS as the RP-STS.
Attach Oracle Web Services Manager (OWSM) WS-Trust policies to the web service and client, and configure Oracle STS and Microsoft ADFS 2.0 STS to establish trust across security domains.
Oracle WebLogic Server
Oracle Web Services Manager (OWSM)
Oracle STS
Microsoft ADFS 2.0 STS
Web service and client applications to be secured
This use case demonstrates the steps required to:
Attach the appropriate OWSM security policies to enforce message-level protection using SAML holder-of-key (HOK) authentication.
Specifically, you attach the following policies to the client and service, respectively:
oracle/wss11_sts_issued_saml_hok_with_message_protection_client_policy
and policies based on oracle/sts_trust_config_client_template
oracle/wss11_sts_issued_saml_hok_with_message_protection_service_policy
Configure web services federation using Oracle STS as the IP-STS and Microsoft ADFS 2.0 STS is used as the RP-STS.
For more information on how to implement this use case, see Use Case: Implementing Oracle STS as IP-STS and Microsoft ADFS 2.0 STS as RP-STS.
To implement the use case configuring web services federation with Oracle STS as IP-STS and Microsoft ADFS 2.0 STS as RP-STS: first configure the web service, then configure Microsoft ADFS 2.0 STS as the RP-STS, followed by configuring Oracle STS as the IP-STS, and in the end configure the Web Service Client.
To implement the use case configuring web services federation with Oracle STS as IP-STS and Microsoft ADFS 2.0 STS as RP-STS, first you need to configure the web service.
oracle/wss11_sts_issued_saml_hok_with_message_protection_service_policy
to the web service. For the complete procedure, see "Attaching Policies" in Securing Web Services and Managing Policies with Oracle Web Services Manager./issuedtokensymmetricbasic256
endpoint into the OWSM keystore.To implement the use case configuring web services federation with Oracle STS as IP-STS and Microsoft ADFS 2.0 STS as RP-STS, after configuring the web service, you need to configure Microsoft ADFS 2.0 STS as RP-STS.
For the complete procedure, see the Oracle STS documentation at http://technet.microsoft.com/en-us/library/adfs2(v=ws.10).aspx
.
/issuedtokensymmetricbasic256
endpoint is enabled.To implement the use case configuring web services federation with Oracle STS as IP-STS and Microsoft ADFS 2.0 STS as RP-STS, after configuring the web service and RP-STS, you need to configure Oracle STS as the IP-STS.
For the complete procedure, see the Oracle STS documentation at http://www.oracle.com/technetwork/middleware/id-mgmt/overview/oraclests-166231.html
.