The Identity Provider metadata must be in
$HOME_DIR/.ForgeRock/SAML/idp.xml directory. See the
documentation for your Identity Provider for instructions on how to get the
metadata.
To export Identity Provider metadata from OpenAM, run a command such as the following.
$ ssoadm export-entity -u amadmin -f /tmp/pass -y http://www.idp.com:8080/openam -m /tmp/idp.xml
