How To Include the SSL Accelerator Server Certificate in Federation SAML 2.0 Metadata (Doc ID 731533.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle Identity Federation - Version: 10.1.4 and later   [Release: 10g and later ]
Information in this document applies to any platform.
***Checked for relevance on 29-May-2010***

Goal

How to add the SSL Accelerator certificate to Oracle Identity Federation (OIF) configuration so that generated SAML 2.0 metadata is valid in an SSL accelerated environment?

For example, Federation is configured without SSL behind an F5 load-balancer that performs SSL acceleration i.e. the F5 does the encryption/decryption of requests. In this case the Federation IDP SAML 2.0 metadata must contain the F5 certificate or Service Provider security validation will fail (where enabled).


Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms