Oracle Identity Federation – Server Configuration Data

Each Oracle Identity Federation instance maintains two types of configuration data:

  • Protocol data, including:
    • properties of the server instance as a whole, including the hostname and port, whether SSL is enabled, signing and encryption PKCS#12/JKS keystores, and so on
    • how the server instance supports its enabled federation protocols when acting as an identity provider, including session time-outs, re-authentication time-outs, the default provider ID, and so on
    • how the server instance supports its enabled federation protocols when acting as a service provider. The data maintained in this case is very similar to the data stored when the server acts as an identity provider
  • Information about peer providers that are trusted providers of this server. Trusted provider configuration data includes:
    • name ID formats to use for assertions
    • attributes to send along with an authentication response
    • signing requirements for assertions and authentication requests
    • preferred bindings
    • validity periods of assertions and artifacts
    • other time-related parameters such as the allowable time difference between servers that are not synchronized.
    • account linking parameters

Leave a Reply

Your email address will not be published. Required fields are marked *