December 17, 2017 at 7:36 pm #20164vijaykodakandlaParticipant
Can anyone please help me out with my below query regards to SAML federation use case.
There is a COT with an SP and IDP(Opensso as IDP) under a realm ‘x’ and ODSEE is configured as a data source in the realm ‘x’. Against which all the users will be authenticated (for WebSSO & Federation). So here, can we configure another data source say, ODSEE/OpenDJ for federation authentication alone under the same realm ‘x’? – I mean federation alone should work against the new data source and websso with the existing ODSEE.
Here, the intension for implementation of above use case is…in the current setup as mentioned above ODSEE is used as data source for both WebSSO and Federation. Now, would like to test the federation against a new ODSEE instance without making any changes in the current federation configurations under the realm ‘x’ except adding a new data source to the realm.
So, does this works with simple addition of new ODSEE to the realm ‘x’ with the additional authorization policies? or should we need to create a new realm and to exporting only federation policies from the realm ‘x’ and then adding a new instance of ODSEE to it? But if we do so, again the fresh metadata need to be shared with the SP?
You must be logged in to reply to this topic.