Sun Java System Identity Server 2004Q2 Beta online help content currently being revised. |
Creating Remote Providers
A remote provider is an entity that receives metadata from a principal, which is an organization or an individual who interacts with the system. To create a remote provider:
Choose Remote Provider from the View menu in the Federation Management module.
By default, when a Provider is created, it will be a service provider. You can optionally decide to create the remote provider as an identity provider by selecting the Is Identity Provider option.
Click New. The Create Remote Provider window is displayed.
Enter a value for the Provider ID.
The Provider ID should specify the URL identifier of the provider. It must be unique across all remote and hosted providers.
Enter a description of the remote provider.
Enter the Security Key.
The Security Key defines the Security Certificate alias. The certificates are stored in the JKS keystore against an alias. This alias (the Security Key) is used to fetch the required certificate.
Enter the SOAP End Point URL.
This field specifies the location for the receiver of SOAP requests. This is used to communicate on the back-channel (non-browser communication) through SOAP.
Enter the Single Logout Service URL.
The Single Logout Service URL is used by a service provider or identity provider to send and receive logout requests.
Enter the Single Logout Return URL.
This specifies the URL to which logout requests are redirected after processing.
Enter the Federation Termination Service URL.
This field specifies the URL to which federation termination requests are sent.
Enter a value for the Federation Termination Return URL.
This field specifies the URL to which federation termination requests are redirected after processing.
Define the Single Sign-On Service URL.
This field defines the identity provider URL to which the service provider sends requests during federation and SSO. This field only needs to be defined if the Is Identity Provider option is enabled.
Enter the Name Registration Service URL.
This field uses the Name Registration protocol that is used by a service provider to register its own Name Identifier while communicating to an identity provider. Registration occurs only after a federation session is established. This field defines the service URL used by a service provider to register a Name Identifier with an identity provider.
Enter the Name Registration Return URL.
This field uses the Name Registration protocol that is used by a service provider to register its own Name Identifier while communicating to an identity provider. Registration occurs only after a federation session is established. The Name Registration Return URL is the URL to which the identity provider sends back the status of the registration.
Enter the Assertion Consumer URL.
This field defines the service provider end-point to which an identity provider will send SAML assertions.
Decide if the remote provider is to be defined as an identity provider. By default, all providers are service providers. If selected, the Is Identity Provider option will additionally define the remote provider as an identity provider.
Click Create.
The new Provider displays in the navigation frame.
Deleting Providers
Choose Provider from the View menu in Federation Management.
All created Providers display in the Navigation frame.
Check the boxes of the Providers you want to delete.
Click Delete Selected.
Note There is no warning message when performing a delete.