Viewing The Ws Service Provider Metadata; Editing The Ws Service Provider Metadata - Novell ACCESS MANAGER 3.1 SP2 - IDENTITY SERVER GUIDE 2010 Manual
Identity server guide
Hide thumbs
Also See for ACCESS MANAGER 3.1 SP2 - IDENTITY SERVER GUIDE 2010:
- Manual (264 pages) ,
- User manual (58 pages) ,
- Manual (30 pages)
Table of Contents
Advertisement
When this option is enabled, the Identity Server checks to see if other identity providers can
satisfy the request. If one or more can, the user is allowed to select which identity provider
performs the authentication. If a proxied identity provider performs the authentication, it sends
the response to the Identity Server. The Identity Server then sends the response to the service
provider.
5 Click OK twice, then update the Identity Server.
10.5.4 Viewing the WS Service Provider Metadata
You can view the metadata of the ADFS server, edit it, and view information about the signing
certificate.
1 In the Administration Console, click Devices > Identity Servers > Edit > WS Federation >
[Service Provider] > Metadata.
The following values need to be configured accurately:
ID: This is provider ID. This is the value that the ADFS server provides to the Identity Server
in the realm parameter of the query string. This value is specified in the Properties of the Trust
Policy page on the ADFS server. The parameter label is Federation Service URI. The default
value is
urn:federation:treyresearch
sloUrl: This is the sign-on URL. This URL is listed in the Properties of the Trust Policy on the
ADFS server. The label is Federation Services endpoint URL. The default value is
adfsresource.treyresearch.net/adfs/ls/
ssoUrl: This is the logout URL. The default value is
adfsresource.treyresearch.net/adfs/ls/
between the login URL and the logout URL.
If the values do not match the ADFS values, you need to edit the metadata.
2 To edit the metadata, click Edit. For configuration information, see
WS Service Provider Metadata," on page
3 To view information about the signing certificate, click Certificates.
4 Click OK twice.
10.5.5 Editing the WS Service Provider Metadata
You can view the metadata of the ADFS server and edit metadata.
1 In the Administration Console, click Devices > Identity Servers > Edit > WS Federation >
[Service Provider] > Metadata > Edit.
2 Configure the following fields:
Provider ID: This is provider ID. This is the value that the ADFS server provides to the
Identity Server in the realm parameter of the query string. This value is specified in the
Properties of the Trust Policy page on the ADFS server. The parameter label is Federation
Service URI. The default value is
Sign-on URL: This is the sloUrl. This URL is listed in the Properties of the Trust Policy on the
ADFS server. The label is Federation Services endpoint URL. The default value is
adfsresource.treyresearch.net/adfs/ls/
.
.
https://
. The ADFS server makes no distinction
275.
urn:federation:treyresearch
.
https://
Section 10.5.5, "Editing the
.
https://
Configuring WS Federation 275
Advertisement
Table of Contents
Troubleshooting
