Access Manager allows you to obtain metadata for SAML 1.1 providers. However, metadata for SAML 1.1 might not be available for some trusted providers. Therefore, Access Manager allows you to enter metadata manually. The page for this is available if you clicked the created the trusted provider.
option when youFor conceptual information about how Access Manager uses SAML, see Section B.0, Understanding How Access Manager Uses SAML.
In the Administration Console, click
> > > > > .If you want to reimport the metadata, click
, then click .Follow the on-screen instructions to complete the steps in the wizard.
Click
.Fill in the following fields:
Supported Version: Specifies which version of SAML that you want to use.
Provider ID: (Required) Specifies the SAML 1.1 metadata unique identifier for the provider. For example, https://dns.name:port/nidp/saml/metadata.
Metadata expiration: Specifies the date upon which the metadata is no longer valid.
Want assertion to be signed: Specifies that authentication assertions from the trusted provider must be signed.
Artifact consumer URL: Specifies where the partner receives incoming SAML artifacts. For example, https://[dns:port]/nidp/saml/spassertion_consumer.
Post consumer URL: Specifies where the partner receives incoming SAML POST data. For example, https://[dns:port]/nidp/saml/spassertion_consumer.
Service Provider: Specifies the public key certificate used to sign SAML data. You can browse to locate the service provider certificate.
Click
.