You can configure the rules between the trusted identity providers and service providers by configuring rules, roles, and actions. You can view the configured rules, create new, delete the existing rule, edit the rules, enable and disable the configured rules.
You can configure the service providers and identity providers for all of the protocols in Identity Server, which are configured in Identity Server cluster. Using the brokering group, you can view the list of available service providers and identity providers in the selection box. Using the arrow keys, configure the trusted identity providers and trusted service providers for the respective brokering group.
Click Devices > Identity Servers > Brokering Group Name.
Click Trusted Providers.
Specify the following details:
Display Name: Specify the display name of the configuring brokering group.
Select IDPs: Configure the selected identity providers using the arrow keys from the available trusted IDPs.
Available Trusted IDPs: Configure the available trusted identity providers using the arrow keys from Selected Identity Providers selection box.
Selected SPs: Configure the selected service providers using the arrow keys from the Available Trusted Service Providers selection box.
Available Trusted SPs: Configure the available trusted service providers using the arrow keys from the Selected Service Providers selection box.
Click OK to continue and the configured service providers and identity providers details are displayed in the Brokering page.
Click Finish to complete the rules configuration for the brokering group.
Click Apply to see the configuration changes.
NOTE:When you log out from Access Gateway device, then the logout is not propagated on the other Identity Servers if you have SAML 1.1 as one of the trusted provider in the brokering group.