Identity Provider metadata - Fluid Topics - Latest

Fluid Topics Configuration and Administration Guide
Category
Reference Guides
Audience
public
Version
Latest

The SAML 2.0 provider shares information about its configuration in an XML file.

In the Identity provider metadata section of the New realm drawer, it is necessary to upload this file.

Fluid Topics parses the file to extract and display the following information in the New realm drawer, as shown in the following example:

An interface section titled 'Identity provider metadata' with a description stating it provides details about the identity provider's metadata required to finalize configuration. Two items are listed: 'Entity identifier: https://keycloak.antidot.net/auth/realms/keycloak' and 'Certificate CN=saml-anais expiration date: 2031 Apr 29.' Below these items, there is a button labeled 'Change IdP XML metadata file'.

Where:

  • Entity identifier is the URL to access the identity provider's metadata.

  • Fluid Topics lists the name and expiration date of each certificate contained in the file.

  • After uploading an Identity provider metadata XML file in the UI, two new sections become available in the New realm drawer: SAML protocol settings and Profile mappers.
  • When a certificate expires, Fluid Topics displays a warning in the New realm drawer. The user must generate a new certificate to continue using the realm. Generating a new certificate consists in doing whatever the IdP requires to generate the certificate, exporting the new IDP metadata.xml file, and uploading this file in the Realms tab of the Authentication administration interface.