The following steps explain how to create a contract that matches what a trusted service provider is asking for in its authentication request.
Click Devices > Identity Servers > Edit > Local > Contracts > New.
Specify the following details:
|
Field |
Description |
|---|---|
|
Display name |
Specify the name of the authentication contract. |
|
URI |
Specify a unique value. This value must match what the service provider is sending in its authentication request for the type. |
|
Authentication Level |
(Optional) Specify a security level or rank for the contract. This value is not used when authentication request sets the comparison type to exact. It is only used when a contract is selected based on a comparison of authentication levels. If the service provider sets the comparison type to minimum, the authentication level can be the same or higher. If the comparison type is set to better, the authentication level must be higher. |
|
Methods |
Select the method that matches the class or type you specified in URI. Other fields for the contract are not requirements of the authentication request and can be configured to meet the requirements of Identity Server. For information about these fields, see Configuring Authentication Contracts. |
Click Next.
Configure an authentication card for the contract. See Configuring Authentication Contracts.
Click Finish > OK.
Update Identity Server.