5.4 Managing SAML 2.0 Applications

Each connector that you import and configure contains the More Options () icon on the upper right corner. This icon enables you to disable, delete, and download the application to a connector.

You can save the configuration information at any stage and complete the SAML 2.0 connector configuration later. If you save any SAML 2.0 application without configuring all required details, the application appears at the top of the list of connectors on the left side of the Applications page under the heading Application needs more information. The More Options icon does not appear on this connector until you complete the configuration.

Any section of the SAML 2.0 connector that requires information contains a red warning symbol. Until the configuration is complete, Access Manager does not configure an appmark or a service provider for the application.

5.4.1 Disabling and Enabling a SAML Application

  1. In Dashboard, click Administrative Tasks > Applications.

  2. Click the More Options () icon in the upper right corner of the connector that you want to disable.

  3. Click Disable.

  4. Update Identity Server for it to take effect. The application gets disabled.

  5. Click More Options icon of the disabled connector > Enable and then update Identity Server if you want to enable it.

5.4.2 Deleting a SAML Application

  1. Click the More Options () icon in the upper right corner of the connector that you want to delete.

  2. Click Delete.

  3. Update Identity Server.

5.4.3 Downloading a SAML Application

You can download a SAML application as a connector and use it to create any number of applications in the same or different Access Manager setups. However, when you download an application, a few settings configured for this application in the Applications page or in the SAML 2.0 configuration pages for the associated service provider will not be exported to the downloaded file.

The downloaded connector includes the following details:

  • Application’s name, icon, and description.

  • The settings configured in the Application Connector Setup section. These settings are used to generate Assertion Consumer Service URL, Binding, Entity ID, Name ID, and Signing Certificate in the metadata for the associated service provider. However, if the metadata of the associated service provider object contains elements other than the ones listed here, those elements will not be preserved.

  • The settings configured in the Attributes section. The attribute mappings are preserved, but the Send With option is cleared for all mappings.

  • The settings configured in the System Setup section. However, the Show button may display only partial federation instructions if this application was converted from a SAML service provider.

The downloaded connector does not include the following details:

  • Any setting that you have configured in SAML 2.0 configuration pages

  • Roles or contracts configured in the Access and Roles section on the Applications page

  • Unique ID

  • Additional certificate of the service provider

  • Additional appmarks

Perform the following steps to download a SAML application:

  1. Click the More Options icon in the upper right corner of the connector that you want to download.

  2. Review the details and click Download.

  3. Click OK to save the application as a zip file that contains the XML definition for the connector.