By: Mohib Zico Account Admin 11 Sep 2014 at 10:44 a.m. CDT

0 Responses
Mohib Zico gravatar
* Do we require encryption of the security token for Asimba server? Ans: Asimba currently does not support encrypted SAML2 assertions, so this is also not required. * What is Asimba's SAML 2.0 SSO service URL generally? Ans: This can be configured in "asimba.xml" file, which is the core configuration for Asimba SAML Proxy Server. Such as, SAML2 IDP Profile can be configured with its own ID. i.e: "saml2" or, SAML2 service with it's ID. i.e: "sso/web" https://example.com/asimba-hub/profiles/saml2/sso/web * What is Asimba's WS-Federation Passive protocol URL? Ans: Asimba does not support WS-Federation. * What is(are) Asimba's SAML Logout Endpoint URL(s)/URI(s)? Ans: It's configurable. Logout for IDPSSOProfile is by default configured as "sso/logout", so an SP requesting logout would call https://example.com/asimba-hub/profiles/saml2/sso/logout Logout for SPSSOProfile is not configured by default, but the default URL naming strategy would make it https://example.com/asimba-hub/profiles/saml2/sp/sso/logout * What is(are) Asimba's SAML Assertion Consumer Endpoint(s)? Ans: In Asimba, this is referred to as the Response-endpoint, and being a RemoteSAML2-related method, it is (exceptionally) configured in the SAML2 IDP Profile section. By default it is configured as https://example.com/asimba-hub/profiles/saml2/sp/sso/web * What is the target URL/URI for the application or Federation platform? Ans: I think this has to do with IDP- or SP-initiated flows. For now, only SP-initiated flows are supported. There is a feature request for IDP-initiated flow, but this has not yet been implemented. In that sense, an AuthnRequest is to be directed to the SSOService URL. * What is your SAML 2.0 response token URL/URI if applicable and available? Ans: The Artifact Resolution Endpoint URL, this is by default configured with id "artifact", so the URL would be: https://example.com/asimba-hub/profiles/saml2/artifact * What is the primary identifier to be sent in the claim? * That would be the Subject's NameID. For more information, you can check [Asimba](http://sourceforge.net/projects/asimba/) wiki.