Book
ForgeRock Identity Cloud

SAML2 Federation in Identity Cloud

This book provides information on SAML2 federation in Identity Cloud and includes common Single Sign-On (SSO) integrations.


Printer friendly view

Table of Contents

  • 1 How do I export and import SAML2 metadata in Identity Cloud?
  • 2 Configuring Federation
    • 2.1 How do I configure IdP or SP initiated Single Sign On in AM (All versions)?
    • 2.2 How do I redirect to a specific page after a successful IdP or SP initiated login in AM (All versions)?
    • 2.3 How do I configure IdP or SP initiated Single Logout in AM (All versions)?
    • 2.4 How do I redirect to a specific page after a successful IdP or SP initiated logout in AM (All versions)?
    • 2.5 How do I know which binding to use for SAML2 federation in Identity Cloud or AM (All versions)?
  • 3 SSO Integrations
    • 3.1 ADFS SSO integration with Identity Cloud as SAML service provider
    • 3.2 Salesforce SSO integration with Identity Cloud as SAML identity provider
  • 4 Journeys
    • 4.1 How do I make session properties from a journey available in the SAML2 assertion when Identity Cloud is the IdP?
  • 5 Known Issues
    • 5.1 SAML2 federation fails with an Invalid Assertion Consumer Location specified error in Identity Cloud or AM (All versions)
    • 5.2 RelayState is missing or not persisted after single logout when HTTP Redirect binding is used with an external SP in Identity Cloud or AM (All versions)
    • 5.3 SP initiated login fails in Identity Cloud or AM (All versions) with Service Provider ID is null error
    • 5.4 SP initiated logout fails in Identity Cloud or AM (All versions) with Identity Provider ID is null error