Creating a User Prototype for SAML Authentication
SAML Authentication requires a user prototype of the type “baja:UserPrototype”. This procedure describes how to create this
new prototype and configure the
Alternate Default Prototype for the UserService.
Prerequisites:
- You have connected to an existing station.
- You have the baja palette open.
- You have already obtained the necessary IdP configuration metadata that the IdP requires for authentication. Specifically,
you need to know the value of the SAML attribute:
prototypeName.
Perform the following steps:
- Open a Property Sheet view of the station’s UserService.
- Drag the UserPrototype component from the baja palette to the
User Prototypesfolder under the UserService. - In the Name window, enter a name for this prototype that exactly matches the value of the
prototypeNameattribute being used by your SAML IdP and click OK.If the SAML IdP sends the attributeprototypeName=SAMLPrototype, the prototype that you create must be named, “SAMLPrototype”. - In the Nav tree, right-click the station and click Save Station.The system adds the new UserPrototype to the drop-down list for
Alternate User Prototypes. - Expand the
Alternate Default Prototypedrop-down list, select your new prototype, and click Save.NOTE: If the SAMLprototypeNameattribute value does not match your prototype name, the UserService defaults the name toDefault Prototype.
You have created a new prototoype of the type "baja:UserPrototype”, and configured the UserService 
Alternate Default Prototype to be this new prototype, as shown.