Configuring SAML 2.0 for a Consumer User

API Portal 10.7 | webMethods API Portal for Administrators | Managing Users | Configuring SAML 2.0 for a Consumer User

If an API Consumer needs to login to API Portal with SAML authentication, the user needs to have API Consumer role even before the first login. API Consumer role can be assigned by API Administrator using UMC.

1. Log on to UMC as an Administrator.

2. Click Configuration.

3. Click SAML in the left navigation pane.

4. In the General section provide the following information:

a. Identity provider ID: The ID that was used while configuring Single sign-on.

b. Service provider ID: The ID that was used while configuring Single sign-on.

c. Single sign-on URL: The SingleSignOnService location POST URL from SSO configuration.

5. Click Keystore.

6. Provide the required information for Keystore value, Alias, Password, and Type.

7. Click

to upload the keystore that was created while configuring Single Sign-on.

8. Click Truststore.

9. Provide the required information for Truststore value, Alias, Password, and Type.

10. Click

to upload the truststore that was created while configuring Single Sign-on.

11. Activate SAML by selecting Use SAML in the General section.

Note:
The service provider meta-data required for the registration is generated dynamically after SAML configuration. You can download the metadata from the following the URL: http://server/umc/rest/saml/metadata.xml?tenant=tenant. For example, http://localhost:80/umc/rest/saml/metadata.xml?tenant=default.

You can provide the metadata to the Id Provider administrator for authentication to other applications.