Delete SAML web single sign-on (SSO) trust association interceptor (TAI) using wsadmin
We can use wsadmin-line utility to delete the Security Assertion Markup Language (SAML) trust association interceptor (TAI) in the security configuration of the WAS.
- Start the WAS.
- Start wsadmin utility from the app_server_root/bin directory by entering the command: wsadmin -lang jython.
- At the wsadmin prompt, enter the following command:
AdminTask.deleteSAMLTAISSO()
We can use the following parameters with this command:
Parameter Description -ssoId Optional if we have only one SSO service provider partner. If we have more than one SSO service provider partner, this parameter is required. It is the identifier for the group of custom properties associated with the SSO service provider partner. This parameter is specified as an integer. -securityDomainName This parameter specifies the name of the security domain of interest. If a value for this parameter is not specified, the command uses the global security configuration. This parameter is specified as a String. -deleteSigningCert Optional. Specify true to delete the signing certificate from the trust store. If this alias is referenced by another IdP or service provider, it is not deleted from the trust store. This parameter is specified as a Boolean.
Results
The SAML TAI SSO service provider partner properties have been deleted for this WebSphere Application Server.
Example
The following example deletes the SAML TAI SSO service provider partner 1 from the global security SAML TAI configuration:AdminTask.deleteSAMLTAISSO('-ssoId 1')
The following example deletes the SAML TAI SSO service provider partner 1 from the security domain myDomain1:
AdminTask.deleteSAMLTAISSO('-ssoId 1 -securityDomainName myDomain1')