This topic has 3 replies, 2 voices, and was last updated 4 years, 1 month ago by grk.

  • Author
    Posts
  • #21976
     aniru2dh
    Participant

    Hi All,

    1. I am looking for some documentation on configuring OpenAM 5.5.1 as both Hosted IDP and Hosted SP. Is it possible to configure a single instance of OpenAM as hosted IDP and hosted SP.

    2. By Default when we create a hosted IDP/sp, the entity id defaults to the url of the OpenAM server. Is it possible to have a different url. if yes, what would be the url to configure so that federation works without any issues.

    Thanks,
    Anirudh.

    #21978
     grk
    Participant

    @aniru2dh
    1. Yes, you can use same OpenAM instance as Hosted IDP and Hosted SP.
    https://backstage.forgerock.com/docs/am/5.5/saml2-guide/#saml2-providers-and-cots

    2. IDP/SP name can be any string. It is not necessary to have in URL format. You can change it while creating IDP/SP

    Thanks,

    #22327
     aniru2dh
    Participant

    @grk is it mandatory to have saml nameid format as part of AuthnRequest when OpenAM acting as IDP and third party as SP during an SP initiated transaction.

    Thanks,
    Anirudh.

    #22332
     grk
    Participant

    @aniru2d per AuthnRequest schema, it seems NameidPolicy is not mandatory but per my observation, SPs send persistent NameidPolicy if none is provided on IDP and SP configuration.

    Thanks,

Viewing 4 posts - 1 through 4 (of 4 total)

You must be logged in to reply to this topic.

©2022 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?