Specifying The Intersite Transfer Service Url For The Login Url Option - Novell ACCESS MANAGER 3.1 SP2 - IDENTITY SERVER GUIDE 2010 Manual

For configuration information, see
Provider" on page 221.
7.11.2 Specifying the Intersite Transfer Service URL for the
Login URL Option
Liberty and SAML 2.0 support a single sign-on URL. Because SAML 1.1 does not support a single
sign-on URL, you need to specify the Intersite Transfer Service URL in the Login URL option on the
authentication card for the SAML 1.1 identity provider:
SAML 1.1 Authentication Card
Figure 7-3
In order for a card to appear as a login option, you must specify a Login URL and select the Show
Card option. Figure 7-4 illustrates a possible configuration that requires the Intersite Transfer
Service for the SAML 1.1 protocol.
Federated Identity Configuration
Figure 7-4
Identity Server
Site A
Identity Provider: A
DNS: idp.sitea.novell.com
If you want a card to appear that allows the user to log in to Site A (as shown in
need to specify a value for the Login URL option.
Using the DNS names from
"Configuring an Intersite Transfer Service Target for a Service
Identity Server
Site B
Identity Provider: B
Service Provider: 1
DNS: idp.siteb.novell.com
DNS: eng.provo.novell.com
Figure 7-4, the complete value for the Login URL option is as follows:
Access Gateway
Service Provider: 2
Web Server
URL: https://eng.provo.novell.com/myapp
Figure
Configuring SAML and Liberty Trusted Providers 219
7-3), you