S A M L Id P Service (saml-SAMLIdPService)
This component takes advantage of SAML functionality without your having to set up an external IdP. Stations using
The samlDP feature license is required to run this service.
You add this component to your station by expanding SAML Identity Provider in the saml palette and dragging the SAMLIdPService component to the Services folder in the Nav tree.
Figure 20. SAML IdP Service properties
To access these properties, expand and double-click SAMLIdPService.
In addition to the common properties (status, and fault cause), this component has the following configuration properties.
| Name | Value | Description |
|---|---|---|
| Enabled | true (default) and false |
Enables (true) and disables (false) the service.
|
| IdP Signing Cert | string | Identifies the server certificate as selected from the Supervisor station’s User Key Store. |
| EntityID | string | Defines the Supervisor station’s IP address (or hostname) plus the port number the WebService is running on (80 for http/443 for https).
Always append the characters “/saml/” to the |
| Time Skew | 0000h 03m 00s (default) | Sets the number of minutes to extend the validity period of the SAML request from the subordinate station. This allows the SAML message to be accepted when the Supervisor and subordinate stations cannot synchronize their time values. Use positive values. |
| Apply Time Skew | true and false (default)
|
Applies (true) and ignores (false) the specified Time Skew setting to the response. For cases where a time difference exists between the Supervisor and a remote station, this applies
the time skew to the response(s).
|
| xmlEncrypter |