Management of the local service provider configuration for SAML-based authentication. Here you can define the identity and technical parameters of your eTASK instance as a service provider, which are required for secure communication with external identity providers (e.g. Entra ID, ForgeRock). This includes organizational data, security certificates and contact information.
Service Provider
Basic identification and organizational data of your local service provider as well as the security certificates and contact persons required for SAML authentication.
| Property | Description |
| Certificate Encryption | Digital certificate for encrypting SAML responses and assertions received from identity providers. |
| Organization | Official name of your organization used in the SAML metadata exchange. |
| Organization (display name) | Display name of your organization for display in user interfaces and login screens. |
| Organization URL | Web address (URL) of your organization, which is stored in the SAML metadata document. |
| Certificate authentication | Digital certificate for signing the outgoing SAML authentication requests to the identity provider. |
| Contact person (support) | Name of your organization's support contact for SAML-related requests. |
| Contact person (support) Email | E-mail address of the support contact person for SAML-related support requests. |
| Contact person (technology) | Name of your organization's technical contact person for SAML configuration and integration. |
| Contact person (technical) Email | E-mail address of the technical contact person for SAML integration and configuration questions. |
ExportButton
This info area provides export options for the SAML configuration.
Configuration parameters
Security and behavior parameters that control the SAML protocol behavior of your service provider - in particular the requirements for digital signatures for outbound requests and inbound assertions.
| Property | Description |
| WantAssertionsSigned | Determines whether all incoming SAML assertions from identity providers must be digitally signed in order to be accepted. |
| AuthnReguestsSigned | Defines whether all outgoing SAML authentication requests (AuthnRequests) from this service provider must be digitally signed. |
