Name
|
|
|
|
|
enableSecurityTokenAttribute
|
N
|
Y
|
N
|
Controls if the security token that was authenticated should be included in the AttributeStatement of the issued SAML assertion.
Default: Checked.
|
enableSAMLAttributesPurge
|
|
|
|
Controls if AttributeStatements of the authenticated assertion should be included in the AttributeStatements of the issued SAML assertion.
Default: Checked.
|
enableHolderOfKeyAssertion
|
|
|
|
Controls if Holder-of-Key Subject Confirmation method should be used in the issued SAML assertion.
Select one of the following security token types:
- SAML 1.1 Token 1.1
- SAML 2.0 Token 1.1
|
samlValiditySeconds
|
N
|
Y
|
Y
|
The duration of the validity of the SAML tokens.
Default: 600 s.
|
tokenSigningService
|
N
|
Y
|
Y
|
The name of an Identity Provider resource that identifies the signer of the SAML tokens.
|
signatureValidationService
|
N
|
Y
|
N
|
Indicate whether to verify the signatures. If checked, activates the Trust Provider field.
Default: Unchecked.
|
kerberosTokenValidationService
|
N
|
N
|
N
|
Kerberos is a secure method for authenticating a request for a service in a computer network.
|
usernameTokenValidationService
|
N
|
N
|
N
|
Indicate whether to verify the username. If checked, activates the Authentication Provider field.
Default: Unchecked.
|
groupSelectorExpression
|
|
|
|
|
wssBspCompliant
|
|
|
|
|