ADC

SAML SSO profiles

To enable and configure SAML-based SSO, you first create a SAML SSO profile.

To create a SAML SSO profile by using the command line interface

At the command prompt, type:

```add tm samlSSOProfile -samlSigningCertName -assertionConsumerServiceURL -relaystateRule -sendPassword (ON | OFF) [-samlIssuerName ]


### Example

add tm samlSSOProfile saml-SSO-Prof-1 -samlSigningCertName “Example, Inc.” -assertionConsumerServiceURL “https://service.example.com” -relaystateRule “true” -sendPassword “ON” -samlIssuerName “Example, Inc.”


## To modify a SAML SSO by using the command line interface

At the command prompt, type:

```set tm samlSSOProfile <name> -samlSigningCertName <string> -assertionConsumerServiceURL <URL> -relaystateRule <expression> -sendPassword (ON | OFF) [-samlIssuerName <string>]<!--NeedCopy-->

Example

set tm samlSSOProfile saml-SSO-Prof-1 -samlSigningCertName "Example, Inc."  -assertionConsumerServiceURL "https://service.example.com" -relaystateRule "true"  -sendPassword "ON" -samlIssuerName "Example, Inc."
<!--NeedCopy-->

To remove a SAML SSO profile by using the command line interface

At the command prompt, type:

```rm tm samlSSOProfile


### Example

rm tm sessionAction saml-SSO-Prof-1

```

To configure a SAML SSO profile by using the configuration utility

  1. Navigate to Security > AAA - Application Traffic > Policies > Traffic.
  2. In the details pane, click the SAML SSO Profiles tab.
  3. On the SAML SSO Profiles tab, do one of the following:
    • To create a new SAML SSO profile, click Add.
    • To modify an existing SAML SSO profile, select the profile, and then click OpenEdit.
  4. In the Create SAML SSO Profiles or the Configure SAML SSO Profiles dialog box, set the following parameters:
    • Name*
    • Signing Certificate Name*
    • ACS URL*
    • Relay State Rule*
    • Send Password
    • Issuer Name
  5. Click Create or OK, and then click Close. The SAML SSO profile that you created appears in the Traffic Policies, Profiles, and SAML SSO Profiles pane.
SAML SSO profiles