Provider Configuration 
Provider configuration consists of the following tasks:
Configuring a Web services endpoint with SAML
Before you configure the endpoint, you need to define which subject confirmation method you want to use:
Sender-Vouches for server-to-server connections
For more information about configuring this subject confirmation method, see Configuring a Web Services Endpoint with SAML and Sender-Vouches.
Holder-of-Key for desktop-to-server connections or to use central trust relationships
For more information about configuring this subject confirmation method, see Configuring a Web Services Endpoint with SAML and Holder-of-Key and Protecting Web Services with SAML.
Configuring trust for a Security Token Service
You need to define whether you want to use a local Security Token Service (STS) or an external STS. To configure a central STS, specify the STS data as described in Configuring a Web Services Endpoint with SAML and Holder-of-Key. To configure a local STS, leave the STS field empty.
For more information about STS configuration, see Trusting an Security Token Service.
Prerequisites
The use of SAML 2 and security sessions is activated on the WS provider. More information: Enabling the SAML Service Provider and Activating HTTP Security Session Management on AS ABAP.
You have configured your WS provider to use SAML token profiles, for example, by making the SAML Assertion setting in the individual configuration. This corresponds to the Web Service policies of the SAML 2 interface.