Page History
...
The respective SSO Service Providers need to be registered in WSO2 Identity Server for each web application.
Note Note that the parameters/values defined in the
sso-sp-config.propertiesfile of WSO2 AS should correspond to the parameters defined for the service providers registered in WSO2 IS.Since the valve automatically determines the SSO issuer-id, the service provider issuer-id needs to be in the following format:
For super tenant web applications: issuer-id = webapp-name
For tenant web applications: issuer-id = t_tenant-name_webapp-name
Examples:When the foo.war web application is deployed for the Super Tenant, the issuer-id = foo.
When the bar.war web application is deployed in wso2.com tenant, the issuer-id = t_wso2.com_bar.
The 'Assertion Consumer URL' for the service providers should be set to the same value specified in the
sso-sp-config.propertiesfile. Shown below is the URL given in the defaultsso-sp-config.propertiesfile. The format of the URL should be as follows:https://{ip}:{port}/{app-name}/acsCode Block #The URL of the SAML 2.0 Assertion Consumer #SAML.ConsumerUrl=http://localhost:8080/avis.com/home.jsp
Update "IdentityProviderURL" and “EntityId” in
<IS_HOME>/repository/conf/identity.xmlwith the correct IS hostname.Note Note that the “EntityId” in
<IS_HOME>/repository/conf/identity.xmlshould be the same as the “SAML2.IdPEntityId” defined in<AS_HOME>/repository/conf/security/sso-sp-config.properties.In WSO2 IS, update the resident IDP "Entity Id" with the same value as the "EntityId". Shown below is the default configuration.
...
Overview
Content Tools
Activity
- Get Support
- Report a bug
Download PDF
Download a PDF file of the documentation