SAML service provider in the JSP-Loginapp

Configuration Overview

SAML Configuration of IAM involves using the ConfigEditor and editing XML files manually:

  • the most important entity-related settings must be partly provided in SAML 2.0 standardized SAML 2.0 metadata¬†files (XML files).
  • Airlock IAM delegates most SAML processing to the OpenSSO library which has its own way of storing entity-related settings in extended metadata files (XML files).
  • all other SAML 2.0 related settings are managed in the Airlock IAM configuration using the ConfigEditor.

Standard SAML Metadata Files (e.g. sp.xml)

These standardized XML files contain all public configuration data of a SAML 2.0 entity, for both IDP and SP.

The general idea is to configure a SAML 2.0 capable application and then export the public settings to a SAML 2.0 metadata file.

This file may be imported by other applications that need to interact with this application.

Extended Metadata Files (e.g. sp-extended.xml)

 These files contain all non-public configuration data of a SAML 2.0 entity. This is not part of the SAML 2.0 standard but specific to the OpenSSO library!