Creating the Trusted Affiliate Object for eMartian

To create an affiliation between iChainSite and eMartian, iChainSite must have an entry in its list of Trusted Affiliates for eMartian. To create this entry:

1. In ConsoleOne, Select the iChainSite SAML Config Object.

2. Select New > Trusted Affiliate.

   Figure 47
   iChainSite: Trusted Affiliate
   

   In this example, the Trusted Affiliate object that represents www.emartian.com is named eMartian.

3. Open the eMartian Trusted Affiliate object's Properties page.

   Figure 48
   eMartian Trusted Affiliate Object: Properties Page
   

4. Set the Site ID to www.emartian.com.

5. Auto-generate the SourceID.

   Leave the Trusted Root Information fields blank.

6. Click the User Mapping page.

7. Specify your desired user mapping scheme.

   If you want to quickly get your sites running, you can leave the rules blank and use the default user mapping defined in the SAML Config object. Alternatively, you can use the e-mail attribute to create a dynamic user mapping rule, as used in the iChainsite and eMartian samples.

8. Click the Assertions page.

9. Deselect the Digital Signing Information check boxes.

   For details on how to set up security between the two sites, see Fine-Tuning the SAML Extension.

   Figure 49 shows what the Assertions page should look like for the eMartian Trusted Affiliate:

   Figure 49
   eMartian Properties: Assertions Page
   

10. In order for the eMartian application to display custom-tailored content for the iChainSite users, the Email and Password attributes should be sent.

    Figure 50 shows what the User Attributes page should look like:

    Figure 50
    eMartian Properties: User Attributes Page
    

11. The iChainSite to eMartian Trusted Affiliate should have all of the URLs necessary to let iChain contact eMartian. Follow the example in Figure 51 to set up these URLs:

    Figure 51
    eMartian Properties: URLs Page
    

At this point, iChainSite can trust eMartian. Continue with Creating the Trusted Affiliate Object for iChainSite.

Creating the Trusted Affiliate Object for iChainSite

Now that iChainSite can trust eMartian, you must configure eMartian to trust iChainSite in return. To do this, you must create a Trusted Affiliate entry in the eMartian SAML configuration representing iChainSite.

1. In ConsoleOne, select the eMartian SAML Config Object.

2. Select New > Trusted Affiliate.

   Figure 52
   eMartian: Trusted Affiliate
   

   In this example, ichainsite is the chosen name for the Trusted Affiliate object. After you create this object, open its Properties page.

3. Right-click the object and select Properties.

4. Set the SiteID to www.ichainsite.com.

5. Auto-generate the SourceID.

   Leave the Trusted Root Information fields blank.

   Figure 53
   iChainSite: Properties Page
   

6. Click the User Mapping page.

7. Specify your desired user mapping scheme.

   If you want to quickly get your sites running, you can leave the rules blank and use the default user mapping defined in the SAML Config object. Alternatively, you can use the e-mail attribute to create a dynamic user mapping rule, as used in the iChainsite and eMartian samples.

8. Click the Assertions page.

9. Deselect the Digital Signing Information check boxes.

   For details on how to set up security between the two sites, see Fine-Tuning the SAML Extension.

   Figure 53 shows what the Assertions page should look like for the iChainSite Trusted Affiliate:

   Figure 54
   iChainSite Properties: Assertions Page
   

10. In order for the iChainSite application to display custom-tailored content for the eMartian users, the Email and Password attributes should be sent.

    Figure 55 shows what the User Attributes page should look like:

    Figure 55
    iChainSite Properties: User Attributes Page
    

11. The eMartian to iChainSite Trusted Affiliate should have all of the URLs necessary to let eMartian contact iChainSite. Follow the example in Figure 56 to set up these URLs:

    Figure 56
    iChainSite Properties: URLs Page