Oracle Access Manager (OAM) Federation - Does The ACS URL Sent From The Service Provider (SP) Overrides ACS URL Defined In The Identity Provider (IdP)
(Doc ID 2918893.1)
Last updated on JANUARY 06, 2023
Applies to:
Oracle Access Manager - Version 12.1.2.0.0 and laterInformation in this document applies to any platform.
Goal
An Assertion Consumer Service (ACS) URL is an endpoint on the service provider where the identity provider will redirect to with its authentication response. This endpoint should be an HTTPS endpoint because it will be used to transfer Personally Identifiable Information (PII). The assertion consumer service (ACS) endpoint is a location to which the SSO tokens are sent, according to partner requirements. It tells the IdP where to redirect an authenticated user after sign-in.
Back Ground
- Oracle Access Manager (OAM) is the Identity Provider (IdP)
- OpenSaml is the Service Provider (SP)
- Followed the Oracle Access Manager 11g R2PS2 (OAM 11.1.2.2) Federation: How to Create a SAML 2.0 Service Provider Partner(SP)/Configure OAM as a SAML 2.0 Identity Provider (IdP) (Doc ID 2491905.1)
- Everything is working fine
- The ACS URL set in SP using OpenSAML is always being used
- The ACS URL defined on the OAM IdP gets ignored
Question
- Is this the expected functionality where the ACS URL defined on OAM IdP configuration is just ignored?
Solution
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Goal |
Solution |
References |