Important Notice: Our web hosting provider recently started charging us for additional visits, which was unexpected. In response, we're seeking donations. Depending on the situation, we may explore different monetization options for our Community and Expert Contributors. It's crucial to provide more returns for their expertise and offer more Expert Validated Answers or AI Validated Answers. Learn more about our hosting issue here.

How do I enable name ID encryption in the session context of a discovery bootstrap?

bootstrap context Discovery enable encryption Id session
0
Posted

How do I enable name ID encryption in the session context of a discovery bootstrap?

0 CommentsAdd a Comment

1 Answer

0

• Set up a keystore. This needs to be done on both machine-A and machine-B. If machine-C is different from machine-B, copy keystore.jks, .keypass and .storepass from machine-B to corresponding directory on machine-C. See How do I setup a keystore?. • Use the following procedure to set up machine-A as the identity provider: • Run the following command to set the default attribute values for the discovery service: famadm set-attr-defs -s sunIdentityServerDiscoveryService -u amadmin -f admin_password_file_name -t Global -a “sunIdentityServerDiscoProviderID=machine-A_protocol://machine-A_host:machine-A_port/machine-A_deploy_uri” • Run the following command to set the default attribute values for name ID encryption: famadm set-attr-defs -s sunIdentityServerDiscoveryService -u amadmin -f admin_password_file_name -t Global -a “sunIdentityServerBootstrappingEncryptNIinSessionContext=true” • Run the following command to display the default attribute values for bootstrapping: famadm get-attr-def

0 CommentsAdd a Comment

Related Questions

What is your question?

*Sadly, we had to bring back ads too. Hopefully more targeted.

Experts123