SAML1ArtifactResolutionProfile

Definition

&&TODO&&

Screen overview

&&TODO&&

Standard attributes

• Class: class name (readOnly field).
• Enabled: if it is checked (selected option is Yes) that protocol will be enabled.enable.
• Sign Responses:​ ausually it can be set to never, as long as the assertions are signed. Its preferable to sign responseassertions guaranteesrather than responses, because the assertion can be forwarded by the service provider thatto another service provider, but the response has been issued by the Identity Provider &&TODO&&
  • Conditional ¿Como funciona?
  • Always
  • Never
  •  
  not.
• Sign Assertions: it's advisable to sign every assertion, so it avoids assertion spoofing. The &&TODO&&assertion can be forwarded by the service provider to another service provider.
• Sign AssertionsRequest: &&TODO&&the identity provider will issue requests to service providers in order to perform the single logout process. Unless it is needed by any service provider, leave it to conditional.