You must specify values for federation properties when configuring WS-Federation.
WS-Federation protocol defines a standardized, multi-vendor Web-based single sign-on solution based on a collection of integrated Web Services (WS*) standards including WS-Security, WS-Trust, and WS-Federation. When you configure Tivoli® Federated Identity Manager, select the WS-Federation Passive Profile.
You should be familiar with the WS-Federation standards documents before implementing a single sign-on federation. The standards specify data exchange and message processing. You should understand what information you are required to provide to your business partners, and what information your partner must provide to you.
Web Services Federation Language (WS-Federation):
http://wwww.ibm.com/developerworks/library/ws-fedThe Federation wizard will prompt you to supply values for a number of properties. Most of them can be modified later, after federation creation.
The profile or profiles to use is based on both business policy decisions and network security architecture. Federation partners must agree on the profile choices in order to enable user single sign-on across the federation. The choice must be made prior to configuring the federation.
SAML 2 supports a unique range of single sign-on profiles. The profiles extend beyond specifications for achieving federated single sign-on, and can include other functions such as single logout and federation termination.