Creating and modifying a federation

Use the Federations management page to create a new federation, or to view and modify the details about an existing federation.

Before you begin

Depending on the protocol you want to use, review the following topics:
  • SAML 1.1
  • SAML 2.0
  • WS-Federation federations
  • OpenID Connect federations
    Note: Do not use the Federation management page for new OpenID Connect Providers. New OIDC Provider federations are now managed through the API Protection page in the local management interface. See OpenID Connect Provider federations.

    Security Access Manager Version 9.0.4 supports enhanced features for OpenID Connect. The configuration and management tasks for new Providers and Relying Parties are enhanced. These tasks replace the management tasks for prior (Version 9.0.3 and older) OpenID Connect Provider Federations.

    The Version 9.0.3 and older federations remain fully supported as legacy federations. The legacy management tasks remain fully supported through the Federation management page.

    Review the information for your type of OpenID Connect federation:

Procedure

  1. Log in to the local management interface.
  2. Select Secure Federation > Manage > Federations. All configured federations are displayed.
  3. You can create a federation or modify any existing federations.
    • To create a federation, click Add and then follow the wizard. The wizard pages differ depending on the federation protocol you select.
      Note: If you encounter a session timeout while you are creating a federation and then log back in, you might not be able to see the federation that you created. You must click Refresh to get the current data from the appliance.
    • To modify a federation, select the federation and then click Edit. Follow the wizard and modify the settings on each page as needed.
Parent topic: Managing federations