Configuring an Intersite Transfer Service Target for a Service Provider

If you have created web pages containing Intersite Transfer Service URL (see Using Intersite Transfer Service Links on Web Pages), you can configure Identity Server to control the TARGET parameter.

  1. Click Devices > Identity Servers > Edit > [Liberty, SAML1.1, or SAML 2.0] > [Service Provider] > Intersite Transfer Service.

  2. Specify the following details:

    ID: (Optional) Specify an alphanumeric value that identifies the target.

    If you specified an ID for the target, you can use this value to simplify the Intersite Transfer URL that must be configured at the service provider. This is the <user_definedID> value in the following format for the Intersite Transfer URL.

    <identity provider URL>?id=<user_definedID>

    The ID specified here allows Identity Server to find the service provider’s metadata.

    NOTE:If you have defined Unique Id for a specific trusted service provider, you cannot simplify the Intersite Transfer URL on the Intersite Transfer Service page in Administration Console. You must specify the complete idpsend URL.

    When a trusted service provider is configured with a unique ID, the idpsend URL is in the following format:

    https://idp.sitea.example.com:8443/nidp/saml2/idpsend?PID=https://idp.siteb.example.com:8443/nidp/saml2/metadata&uniqueId=<unique id configured in admin console>&TARGET=https://idp.siteb.example.com/saml2/app

    Target: Specify the URL of the page that you want to display to users when they authenticate with an Intersite Transfer URL.The behavior of this option is influenced by the Allow any target option. It is recommended to specify a default target URL. For example, https://www.serviceprovider1.com.

    Allow any target: You can either select or not select this option.

    • When you select this option,

      • if the Intersite Transfer URL has a target value, then the user is sent to target URL.

      • if the Intersite Transfer URL does not have a target value, then the user is sent to the configured target, that is, www.serviceprovider1.com.

    • When you do not select this option,

      • if the Intersite Transfer URL has a target value, then the user is sent to the target www.serviceprovider1.com irrespective of the target mentioned in the Intersite Transfer URL.

      • if the Intersite Transfer URL does not have a target value, the user is sent to www.serviceprovider1.com.

  3. Click OK > OK.

  4. Update Identity Server.