Endpoint URL specifications (Federation)

Endpoint URL specifications (Federation)

We must define several endpoints on our point of contact server so that communications can be exchanged between ourselves and partner. These endpoints are defined when we configure your federation in ISAM. The endpoints are accessible through URLs and are used by the partners in the federation.
SSO service endpoint URL (IP)

The endpoint on the identity provider point of contact server that receives authentication requests. The unauth ACL must be attached to this URL.
https://isam_host:port/junction/sps/federation/saml20/login

Where:

isam_host Host name of the reverse proxy server for the identity provider.
port Port number of the reverse proxy server.
junction Name of the junction created on the reverse proxy server.
federation Name assigned to the federation.

Assertion Consumer Service (ACS) endpoint (SP)

The endpoint on the service provider point of contact server that receives assertions. The unauth ACL must be attached to this URL.
https://isam_host:port/junction/sps/federation/saml20/login?RequestBinding=HTTPPost&NameIdFormat=email&PartnerId=https://mysp.myco.com/portal

Where:

isam_host Host name of the reverse proxy server for the service provider.
port Port number of the reverse proxy server.
junction Name of the junction created on the reverse proxy server.
federation Name assigned to the federation.

Single logout service endpoint (IP or SP)

The endpoint on the service provider or identity provider point of contact server that receives logout requests. The unauth ACL must be attached to this URL. The syntax of the URL is:
https://isam_host:port/junction/sps/federation/saml20/slo

Where:

isam_host Host name of the reverse proxy server for the service provider or identity provider.
port Port number of the reverse proxy server.
junction Name of the junction created on the reverse proxy server.
federation The name assigned to the federation when.

Artifact resolution service or SOAP endpoint (IP or SP)

The endpoint on the service provider or identity provider where artifacts are exchanged for SAML messages. The unauth ACL must be attached to this URL.
https://isam_host:port/junction/sps/federation/saml20/soap

Where:

isam_host Host name of the reverse proxy server for the service provider or identity provider.
Port_number Port number of the reverse proxy server.
junction name of the junction created on the reverse proxy server.
federation The name assigned to the federation.

Name identifier management service endpoint (IP or SP)

The endpoint on the service provider or identity provider that receives messages related to the name ID management. The unauth ACL must be attached to this endpoint. The syntax of the URL for HTTP redirect, HTTP POST, and HTTP artifact binding is:
https://isam_host:port/junction/sps/federation/saml20/mnids

The syntax of the URL for SOAP binding is:
https://isam_host:port/junction/sps/federation/saml20/soap

Where:

isam_host Host name of the reverse proxy server for the service provider or identity provider.
port Port number of the reverse proxy server.
junction Name of the junction created on the reverse proxy server.
federation The name assigned to the federation

Parent topic: SAML 2.0 endpoints and URLs

isam_host	Host name of the reverse proxy server for the identity provider.
port	Port number of the reverse proxy server.
junction	Name of the junction created on the reverse proxy server.
federation	Name assigned to the federation.

isam_host	Host name of the reverse proxy server for the service provider or identity provider.
Port_number	Port number of the reverse proxy server.
junction	name of the junction created on the reverse proxy server.
federation	The name assigned to the federation.