Authentication URL (SAML 2.0) for Legacy Federation

Document ID : KB000013296
Last Modified Date : 14/02/2018
Show Technical Document Details

For both Partnership Federation and Legacy Federation, you must protect the Authentication URL (SAML 2.0) with a CA Single Sign-on policy. But each documentation states different URLs. This document clarifies the correct URLs.


Regarding the Authentication URL (SAML 2.0), documentation states the different URLs for Partnership and Legacy Federation as following.


  • Partnership Federation:


  • Legacy Federation:



Which URL is correct?


Notes: For both configurations, Web Agent Option Pack is installed and configured.

Web Agent Option Pack 12.5xOS: All

The URL of Partnership Federation is correct.


In Legacy Federation, use "web_agent_home/affwebservices/redirectjsp" as well.


When you install and configure Web Agent Option Pack, FWS Application (affwebservices.war) is deployed under the document root of Web Application Server, such as Tomcat.

Additional Information:

Legacy Federation: Protect the Authentication URL (SAML 2.0)

Partnership Federation: Protect the Authentication URL to Establish a Session

Web Agent Option Pack / Deploy Federation Web Services: Set Up JBOSS or Tomcat to Work with Federation Web Services