Symantec Access Management

  • Private Community
 View Only

  • 1.  RoleDescriptor Element in SiteMinder Fed Metadata

    Posted Jun 06, 2014 10:11 AM
      |   view attached

    Hey guys 

    So, when you create a partnership ( SiteMinder/Fed as IdP )  & export the metadata to provide to a Service Provider , it seems to be missing the RoleDescriptor element as per the Oasis SAML 2.0 Standards ( http://docs.oasis-open.org/security/saml/v2.0/saml-metadata-2.0-os.pdf ) . 

    Does anyone know if CA supports RoleDescriptor telements in their metadata ? 

    btw, I'm talking about CA SiteMinder R12.5 with baked in Federation.  But I suppose this would apply to any CA product that supported SAML federation. 

    - Shashi 

    Attachment(s)

    pdf
    saml-metadata-2.0-os.pdf   314 KB 1 version


  • 2.  RE: RoleDescriptor Element in SiteMinder Fed Metadata

     
    Posted Jun 11, 2014 11:53 AM
    shashidhar:

    Hey guys 

    So, when you create a partnership ( SiteMinder/Fed as IdP )  & export the metadata to provide to a Service Provider , it seems to be missing the RoleDescriptor element as per the Oasis SAML 2.0 Standards ( http://docs.oasis-open.org/security/saml/v2.0/saml-metadata-2.0-os.pdf ) . 

    Does anyone know if CA supports RoleDescriptor telements in their metadata ? 

    btw, I'm talking about CA SiteMinder R12.5 with baked in Federation.  But I suppose this would apply to any CA product that supported SAML federation. 

    - Shashi 


    Hi All,

    Any quick answers here for Shashi?

    Thanks!

    Chris



  • 3.  Re: RoleDescriptor Element in SiteMinder Fed Metadata

    Broadcom Employee
    Posted Jul 30, 2014 08:17 AM

    Shashi, RoleDescriptor is an optional element in the OASIS SAML 2.0 standard. I believe that CA doesn't yet support it.

    best wishes.