SAML Service Provider--Name IDs Settings
The Name IDs page contains the following fields:
casso127
HID_samlsp-nameids-tab
The Name IDs page contains the following fields:
- Name ID FormatSpecifies the name identifier format. Pick one of the options from the drop-down list.For a description of each format, see theAssertions and Protocols for the OASIS Security Assertion Markup Language (SAML) V2.0specification.
Name ID Type
The Name ID section contains option buttons that specify the name identifier type. The choices are:
Static
Indicates that the name identifier is the value of the Static Value field. Activates the Static Value field; disables other controls.
- User AttributeIndicates that the name identifier resides in the user attribute specified in the Attribute Name field. Activates the Attribute Name field; disables other controls.
- DN AttributeIndicates that an attribute associated with a DN provides the name identifier. Activates the User Attribute field, the DN Spec field, and the Allow Nested Groups check box; disables the Static Value field.
- Allow Nested GroupsIndicates that nested groups are allowed when selecting the DN. Enabled if the DN Attribute option is selected.
Name ID Fields
Contains fields that specify information about the selected name identifier. The fields in this section are context-sensitive, being determined according to the Name ID Type selection.
Static Value
Specifies the static text that
CA Single Sign-On
uses for all name identifiers for this Service Provider.- User AttributeSpecifies the name of the user attribute which contains the name identifier, or the attribute that are associated with a group or organizational unit DN.
- DN SpecSpecifies the group or organizational unit DNCA Single Sign-Onuses for obtaining the associated attribute to be used as the name identifier.
- LookupOpens the Lookup page to locate the user group and select a DN to populate the DN Spec field.
SAML Affiliation
(Optional) Specifies a SAML affiliation to which the Service Provider belongs. An SAML 2.0 affiliation is a group of Service Providers that use of the same persistent name identifier.
An affiliation replaces the need to configure a name ID in the Name IDs page. Select a configured SAML affiliation from the pull-down list. If an affiliation is selected, the other controls on the page are unavailable.