Table of Contents
Advertisement
Login URL: Specify an Intersite Transfer Service URL.The URL has the following format,
where idp.sitea.novell.com is the DNS name of the identity provider and idp.siteb.novell.com
is the name of the service provider:
https://idp.sitea.novell.com:8443/nidp/saml/idpsend?PID=https://
idp.siteb.novell.com:8443/nidp/saml/metadata&TARGET=https://
idp.siteb.novell.com:8443/nidp/app
Image: Specify the image to be displayed on the card. Select the image from the drop down
list. To add an image to the list, click <Select local image>.
Show Card: Determine whether the card is shown to the user, which allows the user to select
and use the card for authentication. If this option is not selected, the card is only used when a
service provider makes a request for the card.
3 Click OK twice.
4 Update the Identity Server.
Using Intersite Transfer Service Links on Web Pages
The Intersite Transfer Service URL can be used on a Web page that provides links to various
protected resources requiring authentication with a specific identity provider and a specific protocol.
Links on this Web page are configured with the URL of the Intersite Transfer Service of the identity
provider to be used for authentication. Clicking these links directs the user to the appropriate
identity provider for authentication. Following successful authentication, the identity provider sends
a SAML assertion to the service provider. The service provider uses the SAML assertion to verify
authentication, and then redirects the user to the destination URL as specified in the TARGET
portion of the Intersite Transfer Service URL.
Below are sample links that might be included on a Web page. These links demonstrate the use of
SAML 1.1, SAML 2.0, and Liberty formats for the Intersite Transfer Service URL:
SAML 1.1:
<a href="https://idp.sitea.novell.com:8443/nidp/saml/
idpsend?PID=https://idp.siteb.novell.com:8443/nidp/saml/
metadata&TARGET=https://eng.provo.novell.com/saml1/myapp">SAML1 example</a>
SAML 2.0:
<a href="https://idp.sitea.novell.com:8443/nidp/saml2/
idpsend?PID=https://idp.siteb.novell.com:8443/nidp/saml2/
metadata&TARGET=https://eng.provo.novell.com/saml2/myapp">SAML2 example</a>
Liberty:
<a href="https://idp.sitea.cit.novell.com:8443/nidp/idff/
idpsend?PID=https://idp.siteb.novell.com:8443/nidp/idff/
metadata&TARGET=https://eng.provo.novell.com/liberty/myapp">Liberty example</
a>
Figure 5-5
illustrates a network configuration that could use these sample links.
Configuring SAML and Liberty Trusted Providers 153
Advertisement
Table of Contents
Troubleshooting
Related Manuals for Novell ACCESS MANAGER 3.1 SP1 - IDENTITY SERVER
Related Products for Novell ACCESS MANAGER 3.1 SP1 - IDENTITY SERVER
- NOVELL ACCESS MANAGER 3.1 SP2 - README 2010
- NOVELL ACCESS MANAGER 3.1 SP2 BETA 1 - SCENARIOS 2009
- NOVELL ACCESS MANAGER 3.1 SP1 - AGENT GUIDE
- NOVELL ACCESS MANAGER 3.1 SP2 - SSL VPN USER GUIDE 2010
- Novell Access Manager 3.1 SP 1
- Novell Access Manager 3.1 SP2 Beta 1
- Novell Access Manager 3.1 SP 2
- NOVELL CLIENT LOGIN EXTENSION 3.7 - ADMINISTRATION
- NOVELL IDENTITY ASSURANCE SOLUTION 3.0.2 - ADMINISTRATION
- NOVELL IDENTITY MANAGER 3.6.1 - STAGING BEST PRACTICES GUIDE 2010
- NOVELL IDENTITY MANAGER 3.6.1 - NULL SERVICE AND LOOPBACK SERVICE DRIVERS
- NOVELL IDENTITY MANAGER 3.6.1 - JOBS GUIDE
- NOVELL IDENTITY MANAGER 3.6.1 - TASK SERVICE DRIVER
- NOVELL IFOLDER 3 - ADMINISTRATION
- NOVELL POLICIES IN IMANAGER 3.6.1 - 06-05-2009
- NOVELL POLICY IN DESIGNER 3.5 - 09-18-2009