When defining an identity provider partner record, the service provider requires local user accounts to be mapped for imposing its access control model. The process of mapping SAML user accounts from the IdP to the local user accounts at the service provider is known as account linking. In this case, external user accounts that are authenticated by the identity provider need to be mapped to generic local user accounts with permission to access resources.
To create an identity store for account linking:
Note: The name of the tab reflects the name of the identity store that you select.
For example, FederationStore
Configuring Oracle Access Manager for Federated Identity Using SAML 2.0
Enabling Automatic User Provisioning for the Local Identity Store used by Service Providers
Creating an Identity Provider Partner
Exporting SAML 2.0 Service Provider Metadata
Creating a SAML Authentication Policy
Assigning an Authentication Policy to Application Resources
Legal Notices
Copyright © 1999, 2016,
Oracle and/or its affiliates. All rights reserved.
Last Published Tuesday, September 27, 2016