...
Expand |
---|
|
Include Page |
---|
| ProfileConfiguration-SAML2 |
---|
| ProfileConfiguration-SAML2 |
---|
|
|
Expand |
---|
|
Name | Type | Default | Description |
---|
encryptAssertions | Boolean | See Notes | Whether to encrypt assertions | encryptAttributes | Boolean | false | Whether to encrypt attributes |
|
Notes
The default value of signResponses
signs only if TLS isn't used (very unusual) or if the receiving port is 443. It assumes that traffic over 443 will be relying on message-based security measures (but see below), whereas traffic to an alternative TLS port like 8443 will be relying on mutual authentication and thus provide a secure channel.
...