Installation

In order for communication between the different systems (SAML Session Provider/IFS/AD FS) to work according to the SAML protocol, they need to be aware of and trust each other’s certificates. This set-up is mostly automated during the initial configuration of the SAML Session Provider.

When the SAML Session Provider is started for the first time, it calls IFS to publish an SP configuration in IFS. If sufficient privileges for the IFS server have been provided to the SAML Session Provider, IFS can automatically publish the SP (RPT) configuration to AD FS. However, due to some limitations in those APIs, the configuration must be finished manually. This is described in the installation procedure for the SAML Session Provider.