SAML Id P Service (saml-SAMLIdPService)
This component takes advantage of SAML functionality without you having to set up an external IdP. Stations using
The samlDP feature license is required to run this service.
You add this component to your station by expanding SAML Identity Provider in the saml palette and dragging the SAMLIdPService component to the Services folder in the Nav tree.
Figure 22. SAML IdP Service properties
To access these properties, expand and double-click SAMLIdPService.
In addition to the common properties (status, and fault cause), this component has the following configuration properties.
| Name | Value | Description |
|---|---|---|
| Enabled | true (default) and false |
Enables (true) and disables (false) the service.
|
| IdP Signing Cert Alias And Password | additional properties | The certificate is password-protected by a unique password or the global certificate password. Prompts the user to provide the user-defined password or the global certificate password associated with the certificate. |
| EntityID | string | Defines the Supervisor station’s IP address (or hostname) plus the port number the WebService is running on (80 for http/443 for https).
Always append the characters “/saml/” to the |
| Time Skew | 0000h 03m 00s (default) | Sets the number of minutes to extend the validity period of the SAML request from the subordinate station. This allows the SAML message to be accepted when the Supervisor and subordinate stations cannot synchronize their time values. Use positive values. |
| Apply Time Skew To Response | true and false (default)
|
Applies (true) and ignores (false) the specified Time Skew setting to the response. For cases where a time difference exists between the Supervisor and a remote station, this applies
the time skew to the response(s).
|