Enabling SSO with SAML Token
Profile
Use
You can use this section to enable the use of SAML token profiles on the AS Java for WS consumption and provision.
Prerequisites
You have configured the necessary trusted partners and attesters for SAML Token Profile SSO.
Procedure
Use the System Landscape Selection functions of the NWA to select the AS Java systems to configure. For more information, see Defining System Selections.
To configure a WS logical port for consuming a WS
...
1. Using the WS Clients Configuration in NWA, select the Proxy Definition, the corresponding Logical Port to configure and choose the Security management functions for the selected logical port.
2. Switch to Edit mode.
3. Using the Authenticationdropdown menu list choose Message Authentication.
4. Use the radio button to enable the use of SAML Assertions for Message Authentication.
a. Choose Details to show advanced SAML configuration options.
i. Use the radio button to choose the subject confirmation method for the scenario when the Sender vouches with XML Signature.
For this scenario, you can choose an Issuer Name for the certificate to use for the signature.
5. Configure the additional message security options for outgoing WS requests and incoming WS responses.
To configure a WS service endpoint for providing a WS
...
1. Using the WS Configurationfunctions in NWA select the Service Definition, the corresponding Service Endpoint to configure and choose the Security management functions for the selected service endpoint.
2. Switch to Edit mode.
3. Enable the use of SAML for Message Authentication.
a. Enable the SAML Assertion checkbox under Message Authentication.
b. Choose the Details to configure advanced options for SAML authentication.
i. Configure the SAML Conditions by entering the validity of the SAML assertion
4. Configure the additional message security options for outgoing WS responses and incoming WS requests.