Workflow using SAML

The table below summarizes how to configure identity bridging using a SAML credential source. Follow the cross references for more details of each step.
gateway
In the workflow below, the "Trusted Authority" is the certificate authority (CA) that issues and manages security credentials and is responsible for authentication. The "Federated Gateway" is the web service provider that is responsible for authorization.
The table below summarizes how to configure identity bridging using a SAML credential source. Follow the cross references for more details of each step.
Step
For more information, see...
Step 1
: Confirm that your system meets the requirements for configuring identity bridging with SAML.
Identity Bridging Requirements
Step 2
: Connect to the Federated Gateway B.
Connect to the
API Gateway
Step 3
: Add the signing certificate from the Trusted Authority (issued by the Trusted Authority's CA) to the trust store of Federated Gateway.
Add a New Certificate
  • In Step 3 of the Add Certificate Wizard, select the Signing SAML Tokens check box.
Step 4
: Create a new Federated Identity Provider (FIP) in Federated Gateway.
Create a Federated Identity Provider
  • In Step 1 of the Federated Identity Provider Wizard, select the SAML Token check box.
  • In Step 2 of the wizard, click [
    Add
    ] to attach the Trusted Authority signing certificate that was imported in Step 2 above.
Step 5
: Configure a policy with the SAML Token for the shared web service.
Configure SAML Policies for Identity Bridging
Step 6
: Configure authentication against the Federated Identity Provider (FIP).
Authenticate Against Identity Provider Assertion
Step 7
: Consume the shared web service.