Policy Manager Identity Provider (SAML IdP Service) Service Template

This template is designed for services that act as an Identity Provider (IdP). This Identity Provider feature allows the Layer-2 device, RADIUS Remote Authentication Dial-In User Service. An Industry-standard network access protocol for remote authentication. It allows authentication, authorization, and accounting of remote users who want to access network resources.  server, and SAML Security Assertion Markup Language. SAML is an XML-based framework for communicating user authentication, entitlement, and attribute information. SAML enables single sign-on by allowing users to authenticate at an identity provider and then access service providers without additional authentication. Identity Provider to work together and deliver application-based single sign-on using network authentication information.

To access the Policy Manager Identity Provider (SAML IdP Service) service template:

1. Navigate to Configuration > Service Templates & Wizards.

2. From the Service Templates & Wizards page, select Policy Manager Identity Provider (SAML Security Assertion Markup Language. SAML is an XML-based framework for communicating user authentication, entitlement, and attribute information. SAML enables single sign-on by allowing users to authenticate at an identity provider and then access service providers without additional authentication. IdP Service). The Service Templates - Policy Manager Identity Provider (SAML IdP Service) page opens to the General tab.

Figure 1  Policy Manager Identity Provider (SAML IdP Service)

Specify the Policy Manager Identity Provider (SAML IdP Service) service template parameters:

Table 1: Policy Manager Identity Provider (SAML IdP Service) Service Template Parameters

Parameter

Action/Description

General

Select Prefix

Select a prefix from the existing list of prefixes.

This populates the pre-configured information in the Authentication and SP Details sections. The Name Prefix field is not editable.

Name Prefix

Enter a prefix that you want to append to services using this template. Use this to identify services that use templates.

Authentication

Select Authentication Source

Select an authentication source from the list, the information updated in the Authentication and SP Details tabs are auto-populated.

Active Directory Microsoft Active Directory. The directory server that stores information about a variety of things, such as organizations, sites, systems, users, shares, and other network objects or components. It also provides authentication and authorization mechanisms, and a framework within which related services can be deployed. Name

Enter the hostname or the IP address of the Active Directory Microsoft Active Directory. The directory server that stores information about a variety of things, such as organizations, sites, systems, users, shares, and other network objects or components. It also provides authentication and authorization mechanisms, and a framework within which related services can be deployed. server. This field is mandatory.

Description

Enter a description that helps you to identify the characteristics of this template. This field is mandatory.

Server

Enter the hostname or the IP address of the Active Directory Microsoft Active Directory. The directory server that stores information about a variety of things, such as organizations, sites, systems, users, shares, and other network objects or components. It also provides authentication and authorization mechanisms, and a framework within which related services can be deployed. server. This field is mandatory.

Identity

Enter the Distinguished Name (DN Distinguished Name. A series of fields in a digital certificate that, taken together, constitute the unique identity of the person or device that owns the digital certificate. Common fields in a DN include country, state, locality, organization, organizational unit, and the “common name”, which is the primary name used to identify the certificate.) of the administrator account. This field is mandatory.

NetBIOS Network Basic Input/Output System. A program that lets applications on different computers communicate within a LAN.

Enter the Active Directory Microsoft Active Directory. The directory server that stores information about a variety of things, such as organizations, sites, systems, users, shares, and other network objects or components. It also provides authentication and authorization mechanisms, and a framework within which related services can be deployed. server domain name. This field is mandatory.

Base DN Distinguished Name. A series of fields in a digital certificate that, taken together, constitute the unique identity of the person or device that owns the digital certificate. Common fields in a DN include country, state, locality, organization, organizational unit, and the “common name”, which is the primary name used to identify the certificate.

Enter the Distinguished Name (DN Distinguished Name. A series of fields in a digital certificate that, taken together, constitute the unique identity of the person or device that owns the digital certificate. Common fields in a DN include country, state, locality, organization, organizational unit, and the “common name”, which is the primary name used to identify the certificate.) of the administrator account. This field is mandatory.

Password

Enter the account password. This field is mandatory.

Port

Enter the TCP Transmission Control Protocol. TCP is a communication protocol that defines the standards for establishing and maintaining network connection for applications to exchange data. port where the server is listening for a connection. This field is mandatory.

SP Details

SP URL Uniform Resource Locator. URL is a global address used for locating web resources on the Internet.

Enter the Service Provider (SP) URL Uniform Resource Locator. URL is a global address used for locating web resources on the Internet..

Attribute Name

Enter the name of the attributes and assign values to those names. These name/value pairs are included in SAML Security Assertion Markup Language. SAML is an XML-based framework for communicating user authentication, entitlement, and attribute information. SAML enables single sign-on by allowing users to authenticate at an identity provider and then access service providers without additional authentication. responses.

Attribute Value