Solved

OpenAM Installing Service Provider Certificate

Posted on 2013-02-06
3
278 Views
Last Modified: 2014-10-18
I'm currently trying to implement SSO assertion through SAML 2.0 certificate assertion on OpenAM 10.0, and the Service Provider only supplied their certificate, PartnerMyCompany.cer.

1. How do i register the partner as a Service Provider using SMAL 2.0 XML schema with the certificate key in the XML?

2. How do I install the partners' certificate in OpenAM so that I can create a circle of trust with the partners' certificate key?

I need to be authenticated with my partner's certificate to get access to services. I need to create the XML with the partners' certificate key. How do i do this?
<EntityDescriptor entityID="https://www.partner.com/" xmlns="urn:oasis:names:tc:SAML:2.0:metadata">
	<SPSSODescriptor AuthnRequestsSigned="false" WantAssertionsSigned="false" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
		<NameIDFormat>
			urn:oasis:names:tc:SAML:2.0:nameid-format:transient
		</NameIDFormat> 
		<AssertionConsumerService index="1" Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://www.partner.com/Login/MyCompany/SSO.svc/invoke"/>
	</SPSSODescriptor>
</EntityDescriptor>

Open in new window

0
Comment
Question by:digitsung
3 Comments
 
LVL 12

Accepted Solution

by:
mwochnick earned 500 total points
ID: 38868495
Assuming the XML above is a modified sample from your partner
After you login to openAM as the administrator
Click on Register Remote Service Provider
Once in there
Select that you want to upload the meta data from a file
pick your file
upload it

On this screen you also need to pick an existing COT or create a new one

finally you will need to map the the fields you will receive from you partner to the fields in your Idp
0

Featured Post

Portable, direct connect server access

The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
iterator/ListIterator approach 17 39
Java: The Public Class Main 4 30
jsp error 6 25
Setup GlassFish 4 21
For some reason Google Apps has decided to reserve 'www' for your new domain which results in an error when trying to map the web address 'www' to a certain site in your Google Sites. The error is 'this address is already being used' and after some …
This article is about some of the basic and important steps to be used to improve the performance in web-sphere commerce application development. 1) Always leverage the Dyna-caching facility provided by the product 2) Remove the unwanted code …
Viewers learn about the “for” loop and how it works in Java. By comparing it to the while loop learned before, viewers can make the transition easily. You will learn about the formatting of the for loop as we write a program that prints even numbers…
Viewers learn about the scanner class in this video and are introduced to receiving user input for their programs. Additionally, objects, conditional statements, and loops are used to help reinforce the concepts. Introduce Scanner class: Importing…

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question