Table of Contents

Search

  1. Preface
  2. Introducing Administrator
  3. Organizations
  4. Licenses
  5. Ecosystem single sign-on
  6. SAML single sign-on
  7. Source control and service upgrade settings
  8. Users and user groups
  9. User roles
  10. Permissions
  11. Runtime environments
  12. Serverless runtime environments
  13. Secure Agent services
  14. Secure Agent installation
  15. Schedules
  16. Bundle management
  17. Event monitoring
  18. File transfer
  19. Troubleshooting

Administrator

Administrator

Identity provider properties

Identity provider properties

Define SAML identity provider properties on the
SAML Setup
page.
If you have an identity provider XML file, you can upload the file to populate some of the properties.
Informatica Intelligent Cloud Services
can parse and extract most of the data from the XML file. However, you might need to enter certain fields manually such as the name identifier format.
The following table describes identity provider configuration properties:
Property
Description
Use Identity Provider File
The identity provider XML file populates many of the properties on the
SAML Setup
page.
To use an identity provider XML file to define identity provider properties, click
Browse
, and navigate to the identity provider XML file.
Disable auto provisioning of users
Disables auto provisioning of SAML users. When a new SAML user logs in to
Informatica Intelligent Cloud Services
for the first time, the user will not be added to the organization in
Informatica Intelligent Cloud Services
.
Issuer
The entity ID of the identity provider, which is the unique identifier of the identity provider.
The Issuer value in all messages from the identity provider to
Informatica Intelligent Cloud Services
must match this value. For example:
<saml:Issuer>http://idp.example.com</saml:Issuer>
Single Sign-On Service URL
The identity provider's HTTP-POST SAML binding URL for the SingleSignOnService, which is the SingleSignOnService element's location attribute.
Informatica Intelligent Cloud Services
sends login requests to this URL.
Single Logout Service URL
The identity provider's HTTP-POST SAML binding URL for the SingleLogoutService, which is the SingleLogoutService element's location attribute.
Informatica Intelligent Cloud Services
sends logout requests to this URL.
Signing Certificate
Base64-encoded PEM format identity provider certificate that
Informatica Intelligent Cloud Services
uses to validate signed SAML messages from the identity provider.
The identity provider signing algorithm must be either DSA-SHA1 or RSA-SHA1.
Use signing certificate for encryption
Uses the public key in your signing certificate to encrypt logout requests sent to your identity provider when a user logs out from
Informatica Intelligent Cloud Services
.
Encryption Certificate
Base64-encoded PEM format identity provider certificate that
Informatica Intelligent Cloud Services
uses to encrypt SAML messages sent to the identity provider.
Applicable if you do not enable use of the signing certificate for encryption.
Name Identifier Format
The format of the name identifier in the authentication request that the identity provider returns to
Informatica Intelligent Cloud Services
.
Informatica Intelligent Cloud Services
uses the name identifier value as the
Informatica Intelligent Cloud Services
user name.
The name identifier cannot be a transient value that can be different for each login. For a particular user, each single sign-on login to
Informatica Intelligent Cloud Services
must contain the same name identifier value.
To specify that the name identifier is an email address, the Name Identifier Format is as follows:
urn:oasis:names:tc:SAML:1.1:nameidformat:emailAddress
Logout Service URL (SOAP Binding)
The identity provider's SAML SOAP binding URL for the single logout service.
Informatica Intelligent Cloud Services
sends logout requests to this URL.
Logout Page URL
The landing page to which a user is redirected after the user logs out of
Informatica Intelligent Cloud Services
.
Informatica Intelligent Cloud Services
redirects the logged out user to the landing page in the following ways:
  • If you specify a logout page URL,
    Informatica Intelligent Cloud Services
    redirects the user to this URL after logout.
  • If you do not specify a logout page URL,
    Informatica Intelligent Cloud Services
    redirects the user to a default logout page.


Updated August 03, 2020