Servers: Configuration: Federation Services: SAML 2.0 Identity Provider

edocs Home > Oracle WebLogic Server Documentation > Administration Console Online Help > Servers: Configuration: Federation Services: SAML 2.0 Identity Provider

Servers: Configuration: Federation Services: SAML 2.0 Identity Provider

Configuration Options Related Tasks Related Topics
This page configures the SAML 2.0 per server identity provider properties
If you are configuring SAML 2.0 identity provider services for web single sign-on, after you complete the configuration settings on this page, return to the SAML 2.0 General page and click Publish Meta Data.
Configuration Options

Name Description

Enabled
Whether the local site is enabled for the Identity Provider role.
MBean Attribute:
SingleSignOnServicesMBean.IdentityProviderEnabled
Only Accept Signed Authentication Requests
Whether incoming authentication requests must be signed. If set, authentication requests that are not signed are not accepted.
MBean Attribute:
SingleSignOnServicesMBean.WantAuthnRequestsSigned
Login Customized
Whether the a customized login web application is used. If you use a customized login web application, specify a login URL. If you do not customize the login, the login URL and login return query parameter are cleared when you save the changes.
If you use a customized login web application, specify a login URL. If you do not use a customized login web application, the login URL and login return query parameter are cleared when you save the changes to this page.
MBean Attribute:
SingleSignOnServicesMBean.LoginURL
Login URL
The URL of the login form web application to which unauthenticated requests are directed.
By default, the login URL is /saml2/idp/login using Basic authentication. Typically you specify this URL if you are using a custom login web application.
MBean Attribute: SingleSignOnServicesMBean.LoginURL
Login Return Query Parameter
The name of the query parameter to be used for conveying the login-return URL to the login form web application.
MBean Attribute:
SingleSignOnServicesMBean.LoginReturnQueryParameter
POST Binding Enabled
Whether the POST binding is enabled for the Identity Provider.
MBean Attribute:
SingleSignOnServicesMBean.IdentityProviderPOSTBindingEnabled
Redirect Binding Enabled
Whether the Redirect binding is enabled for the identity provider.
MBean Attribute:
SingleSignOnServicesMBean.IdentityProviderRedirectBindingEnabled
Artifact Binding Enabled
Whether the Artifact binding is enabled for the identity provider.
MBean Attribute:
SingleSignOnServicesMBean.IdentityProviderArtifactBindingEnabled
Preferred Binding
Specifies the preferred binding type for endpoints of the identity provider services. Must be set to None, HTTP/POST, HTTP/Artifact, or HTTP/Redirect.
MBean Attribute: SingleSignOnServicesMBean.IdentityProviderPreferredBinding

Related Tasks

Configure SAML Federation Services
Configure SAML 2.0 Identity Provider services

Related Topics

Understanding WebLogic Security
Configuring Single Sign-On with Web Browsers and HTTP Clients
Using Security Assertion Markup Language (SAML) Tokens For Identity

Name	Description
Enabled	Whether the local site is enabled for the Identity Provider role. MBean Attribute: `SingleSignOnServicesMBean.IdentityProviderEnabled`
Only Accept Signed Authentication Requests	Whether incoming authentication requests must be signed. If set, authentication requests that are not signed are not accepted. MBean Attribute: `SingleSignOnServicesMBean.WantAuthnRequestsSigned`
Login Customized	Whether the a customized login web application is used. If you use a customized login web application, specify a login URL. If you do not customize the login, the login URL and login return query parameter are cleared when you save the changes. If you use a customized login web application, specify a login URL. If you do not use a customized login web application, the login URL and login return query parameter are cleared when you save the changes to this page. MBean Attribute: `SingleSignOnServicesMBean.LoginURL`
Login URL	The URL of the login form web application to which unauthenticated requests are directed. By default, the login URL is `/saml2/idp/login using Basic authentication. Typically you specify this URL if you are using a custom login web application.` `MBean Attribute: SingleSignOnServicesMBean.LoginURL`
Login Return Query Parameter	The name of the query parameter to be used for conveying the login-return URL to the login form web application. MBean Attribute: `SingleSignOnServicesMBean.LoginReturnQueryParameter`
POST Binding Enabled	Whether the POST binding is enabled for the Identity Provider. MBean Attribute: `SingleSignOnServicesMBean.IdentityProviderPOSTBindingEnabled`
Redirect Binding Enabled	Whether the Redirect binding is enabled for the identity provider. MBean Attribute: `SingleSignOnServicesMBean.IdentityProviderRedirectBindingEnabled`
Artifact Binding Enabled	Whether the Artifact binding is enabled for the identity provider. MBean Attribute: `SingleSignOnServicesMBean.IdentityProviderArtifactBindingEnabled`
Preferred Binding	Specifies the preferred binding type for endpoints of the identity provider services. Must be set to `None, HTTP/POST, HTTP/Artifact, or HTTP/Redirect.` `MBean Attribute: SingleSignOnServicesMBean.IdentityProviderPreferredBinding`