| Name
|
|
|
|
|
| enableSecurityTokenAttribute
|
N
|
Y
|
N
|
Controls if the security token that was authenticated should be included in the AttributeStatement of the issued SAML assertion.
Default: Checked.
|
| enableSAMLAttributesPurge
|
|
|
|
Controls if AttributeStatements of the authenticated assertion should be included in the AttributeStatements of the issued SAML assertion.
Default: Checked.
|
| enableHolderOfKeyAssertion
|
|
|
|
Controls if Holder-of-Key Subject Confirmation method should be used in the issued SAML assertion.
Select one of the following security token types:
- SAML 1.1 Token 1.1
- SAML 2.0 Token 1.1
|
| samlValiditySeconds
|
N
|
Y
|
Y
|
The duration of the validity of the SAML tokens.
Default: 600 s.
|
| tokenSigningService
|
N
|
Y
|
Y
|
The name of an Identity Provider resource that identifies the signer of the SAML tokens.
|
| signatureValidationService
|
N
|
Y
|
N
|
Indicate whether to verify the signatures. If checked, activates the Trust Provider field.
Default: Unchecked.
|
| kerberosTokenValidationService
|
N
|
N
|
N
|
Kerberos is a secure method for authenticating a request for a service in a computer network.
|
| usernameTokenValidationService
|
N
|
N
|
N
|
Indicate whether to verify the username. If checked, activates the Authentication Provider field.
Default: Unchecked.
|
| groupSelectorExpression
|
|
|
|
|
| wssBspCompliant
|
|
|
|
|
