Can we import Metadata containing both SP and IDP information?

Document ID : KB000013728
Last Modified Date : 14/02/2018
Show Technical Document Details
Question:

Can we import Metadata containing a mix of both SP and IDP information?

 

 

Answer:

No, we can not, we should have one metadata for each type of object. 

If you want to import metadata from a 3rd party that is both SP and IDP, you would have to create 2 metadata and import them

 

For your information the SmFedImport tool usage :

 

To create a SAML2 Identity Provider object:

smfedimport -type saml2idp -username <username> -password <password> -entityid <entityid>

-name <name> [-importkeys <name>] [-silent] -input <filename>

 

To create a SAML2 Service Provider object:

smfedimport -type saml2sp -username <username> -password <password> -entityid <entityid>

-domainname <name> -authurl <URL> -nameidformat (U|E|X|W|K|N|P|T)

-nameidtype (S|U|D) -attrname <name> -dnspec <spec>

-name name [-importkeys <name>] [-importencryptkeys <name>] [-silent] -input <filename>