SAML Authentication requires a user prototype of the type
“baja:UserPrototype”. This procedure describes how to
create this new prototype and configure the Alternate Default
Prototype for the UserService.
You have connected to an existing station.
You have the baja palette open.
You have already obtained the necessary IdP configuration metadata
that the IdP requires for authentication. Specifically, you need to
know the value of the SAML attribute: prototypeName.
- Open a Property Sheet view of the
station’s UserService.
- Drag the UserPrototype component from
the baja palette to the User Prototypes folder under the UserService.
- In the Name window, enter a name for
this prototype that exactly matches the value of the
prototypeName attribute being used by your SAML IdP and click OK.If the SAML IdP sends the attribute prototypeName=SAMLPrototype, the prototype that you create must be named, “SAMLPrototype”.
- In the Nav tree, right-click the station and click Save Station.
The system adds the new UserPrototype to the drop-down
list for Alternate User Prototypes.
- Expand the Alternate Default Prototype drop-down list, select your new prototype, and click Save.
Note: If the SAML prototypeName attribute value
does not match your prototype name, the UserService defaults the name to Default Prototype.
You have created a new prototoype of the type "baja:UserPrototype”,
and configured the UserService Alternate
Default Prototype to be this new prototype, as shown.
