A trusted provider is an issuer of authentication tokens that you want to strongly trust. The provider has given you its issuer ID and its public key for the signing certificate. Tokens issued from this trusted provider are validated by using the public key certificate.
In the Administration Console, click
> > > > .Select from the following actions:
New: Launches the Create Trusted Identity Provider Wizard. See Section 8.7.1, CardSpace Identity Provider Wizard for more information.
Delete: Allows you to delete the selected identity provider.
Enable: Enables the selected identity provider.
Disable: Disables the selected identity provider. When the provider is disabled, the server does not load the definition. However, the definition is not deleted.
Click
, then update the Identity Server if you modified the configuration.The CardSpace Wizard allows you to create a new identity provider.
In the Administration Console, click
> > > > >Configure the following fields:
Name: Specify a display name for the provider. This name appears in the list of trusted providers that you can select for an authentication card profile.
Source: Specifies that the Provider ID is entered manually.
Provider ID: Specify the issuer ID of the trusted provider. For an Identity Server cluster, the issuer ID is the base URL of the Identity Server plus the following path:
/sts/services/Trust
For example, if the base URL is https://test.lab.novell.com:8443/nidp, the Provider ID is the following value:
https://test.lab.novell.com:8443/nidp/sts/services/Trust
Identity Provider: Specify the signing certificate of the Identity Server. You need to export the public key certificate to a file and make it available so that you can browse to the location of the file.
Click
, then click on the certificate page.Click
, then update the Identity Server.Use the CardSpace page to modify the display name of the identity provider.
In the Administration Console, click
> > > > .To modify the name, specify a new display name for the trusted provider in the
text box.This name appears in the list of trusted providers that you can select for an authentication card profile.
Click
twice, then update the Identity Server.Use the Metadata page to edit the Provider ID and to reimport the signing certificate.
In the Administration Console, click
> > > > > .Verify that the ID value matches the provider ID.
Click
.Modify the following fields as required:
Provider ID: Modify or specify a new issuer ID for the trusted provider.
Signing Certificate: Click
to find the signing certificate and import it.Click
twice, then update the Identity Server.