Once you have set up a circle of trust, you can configure it
through the OpenAM console under Federation > Circle of Trust >
Circle of Trust Name.
- Name
-
String to refer to the circle of trust.
- Description
-
Short description of the circle of trust.
- IDFF Writer Service URL
-
Liberty Identity Federation Framework service that writes identity provider entity identifiers to Common Domain cookies after successful authentication, used in identity provider discovery. Example:
http://www.disco.example:8080/openam/idffwriter. - IDFF Reader Service URL
-
Liberty Identity Federation Framework service that reads identity provider entity identifiers from Common Domain cookies, used in identity provider discovery. Example:
http://www.disco.example:8080/openam/transfer. - SAML2 Writer Service URL
-
SAML 2.0 service that writes identity provider entity identifiers to Common Domain cookies after successful authentication, used in identity provider discovery. Example:
http://www.disco.example:8080/openam/saml2writer. - SAML2 Reader Service URL
-
SAML 2.0 service that reads identity provider entity identifiers from Common Domain cookies, used in identity provider discovery. Example:
http://www.disco.example:8080/openam/saml2reader. - Status
-
Whether this circle of trust is operational.
- Realm
-
Name of the realm participating in this circle of trust.
- Entity Providers
-
Known hosted and remote identity and service providers participating in this circle of trust.
