Authentication URL (SAML 2.0) for Legacy Federation

Document ID : KB000013296
Last Modified Date : 14/02/2018
Show Technical Document Details
Introduction:

For both Partnership Federation and Legacy Federation, you must protect the Authentication URL (SAML 2.0) with a CA Single Sign-on policy. But each documentation states different URLs. This document clarifies the correct URLs.

Question:

Regarding the Authentication URL (SAML 2.0), documentation states the different URLs for Partnership and Legacy Federation as following.

 

  • Partnership Federation:

web_agent_home/affwebservices/redirectjsp

  • Legacy Federation:

/siteminderagent/redirectjsp/redirect.jsp

 

Which URL is correct?

 

Notes: For both configurations, Web Agent Option Pack is installed and configured.

Environment:
Web Agent Option Pack 12.5xOS: All
Answer:

The URL of Partnership Federation is correct.

 

In Legacy Federation, use "web_agent_home/affwebservices/redirectjsp" as well.

 

When you install and configure Web Agent Option Pack, FWS Application (affwebservices.war) is deployed under the document root of Web Application Server, such as Tomcat.

Additional Information:

Legacy Federation: Protect the Authentication URL (SAML 2.0)

Partnership Federation: Protect the Authentication URL to Establish a Session

Web Agent Option Pack / Deploy Federation Web Services: Set Up JBOSS or Tomcat to Work with Federation Web Services