A SAML profile is the message-interchange scenario that you and your federation partner have agreed to use. SAML binding, by contrast, is the transport protocol of SAML messages.

Note:

The SAML Profiles tab is not shown for SAML 1.x connections because identity provider (IdP) single sign-on (SSO) is assumed, single logout (SLO) profiles are not supported, and the server supports the "destination-first" (SP-initiated) profile SSO automatically. This window is also not presented for WS-Federation connections because profile selection is not required.

For SAML 2.0, PingFederate Bridge supports all IdP- and SP-initiated SSO and SLO profiles. For more information on typical SSO and SLO profile configurations, including illustrations, see SAML 2.0 profiles.

  1. Go to Applications > Integration > SP connections.
  2. Click on the SP connection you want to configure. For more information, see Accessing SP connections.
  3. On the Browser SSO tab, click Configure Browser SSO.
  4. Select either IdP-Initiatied SSO or SP-Initiated SSO or both, depending on your partner agreement.

    You must select at least one SSO profile.

  5. Select either IdP-Initiated SLO or SP-Initiated SLO or both, depending on your partner agreement.

    SLO profile options are only enabled after you choose an SSO profile.

  6. Click Next to save your changes.