Configuring protocol settings for SP STS
Configure the processing options for validating incoming SAML tokens in your identity provider (IdP) partner connection either in conjunction with browser-based single sign-on (SSO) or independently.
About this task
Select whether the STS should validate incoming tokens only or validate and then generate other types of tokens.
Steps
-
Go to Authentication → Integration → IdP Connections.
-
On the WS-Trust STS tab, click Configure WS-Trust STS.
-
On the Protocol Settings tab, from the Request Processing Options list, choose one of the following options:
Choose from:
-
To only validate incoming SAML tokens, select Validate Incoming SAML Token.
-
To validate and then also generate local tokens to enable single sign-on (SSO) access to web services at your site, select Validate Incoming SAML Token and Issue Local Token.
If you choose to generate local tokens as well, you must set up at least one token generator.
-