?
Solved

OpenAM Installing Service Provider Certificate

Posted on 2013-02-06
3
Medium Priority
?
286 Views
Last Modified: 2014-10-18
I'm currently trying to implement SSO assertion through SAML 2.0 certificate assertion on OpenAM 10.0, and the Service Provider only supplied their certificate, PartnerMyCompany.cer.

1. How do i register the partner as a Service Provider using SMAL 2.0 XML schema with the certificate key in the XML?

2. How do I install the partners' certificate in OpenAM so that I can create a circle of trust with the partners' certificate key?

I need to be authenticated with my partner's certificate to get access to services. I need to create the XML with the partners' certificate key. How do i do this?
<EntityDescriptor entityID="https://www.partner.com/" xmlns="urn:oasis:names:tc:SAML:2.0:metadata">
	<SPSSODescriptor AuthnRequestsSigned="false" WantAssertionsSigned="false" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
		<NameIDFormat>
			urn:oasis:names:tc:SAML:2.0:nameid-format:transient
		</NameIDFormat> 
		<AssertionConsumerService index="1" Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://www.partner.com/Login/MyCompany/SSO.svc/invoke"/>
	</SPSSODescriptor>
</EntityDescriptor>

Open in new window

0
Comment
Question by:digitsung
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 12

Accepted Solution

by:
mwochnick earned 2000 total points
ID: 38868495
Assuming the XML above is a modified sample from your partner
After you login to openAM as the administrator
Click on Register Remote Service Provider
Once in there
Select that you want to upload the meta data from a file
pick your file
upload it

On this screen you also need to pick an existing COT or create a new one

finally you will need to map the the fields you will receive from you partner to the fields in your Idp
0

Featured Post

Manage your data center from practically anywhere

The KN8164V features HD resolution of 1920 x 1200, FIPS 140-2 with level 1 security standards and virtual media transmissions at twice the speed. Built for reliability, the KN series provides local console and remote over IP access, ensuring 24/7 availability to all servers.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Introduction This article is the last of three articles that explain why and how the Experts Exchange QA Team does test automation for our web site. This article covers our test design approach and then goes through a simple test case example, how …
Java functions are among the best things for programmers to work with as Java sites can be very easy to read and prepare. Java especially simplifies many processes in the coding industry as it helps integrate many forms of technology and different d…
Viewers learn about the “for” loop and how it works in Java. By comparing it to the while loop learned before, viewers can make the transition easily. You will learn about the formatting of the for loop as we write a program that prints even numbers…
Viewers learn about the scanner class in this video and are introduced to receiving user input for their programs. Additionally, objects, conditional statements, and loops are used to help reinforce the concepts. Introduce Scanner class: Importing…
Suggested Courses
Course of the Month8 days, 8 hours left to enroll

765 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question