saml
Syntax
saml {
identity-provider identity-provider {
attribute-mapping {
attribute-name assertion-attribute <mandatory | optional>;
address-pool assertion-attribute <mandatory | optional>;
firstname assertion-attribute <mandatory | optional>;
group assertion-attribute <mandatory | optional>;
lastname assertion-attribute <mandatory | optional>;
username assertion-attribute <mandatory | optional>;
}
metadata-id metadata-id;
settings {
entity-id entity-id;
idp-certificate idp-certificate;
single-logout-url single-logout-url;
single-signon-url single-signon-url;
}
}
service-provider service-provider {
assertion-waittime assertion-waittime;
encrypted-assertions;
entity-id entity-id;
hash-algorithm <sha-256 | sha-384 | sha-512>;
sign-auth-request;
sp-certificate sp-certificate;
}
}Hierarchy Level
[edit access]
Description
Describe Security Assertion Markup Language (SAML) authentication parameters.
Options
| identity-provider identity-provider |
Specify the identity provider (IdP) configuration details. |
| service-provider service-provider |
Specify the service provider configuration details. |
The remaining statements are explained separately. See CLI Explorer.
Required Privilege Level
access—To view this statement in the configuration.
access-control—To add this statement to the configuration.
Release Information
Statement introduced in Junos OS Release 24.4R1.