4-24 Oracle Fusion Middleware Administrators Guide for Oracle Identity Federation ■ the SP Provided Name ID Version - the version of the SP Name ID. ■ the Provider ID – the provider ID of the peer provider with which SSO was performed. ■ the Federation Type – the type of federation that was created. It can have one of these values: – 1 - federation between this server as an IdP and an SP – 2 - federation between this server as an IdP and an Affiliation – 3 - federation between this server as an SP and an IdP – 4 - federation between Oracle Internet Directory server as an Affiliation and an IdP. When the identity provider updates a federation by performing a Manage Name ID MNI operation, the value of the following fields is updated: ■ the IdP Provided Name ID ■ the IdP Provided Name ID Format ■ the IdP Provided Name ID Qualifier ■ the Protocol Version When the service provider updates a federation by performing a Manage Name ID MNI operation, the value of the following fields is updated. ■ the SP Provided Name ID ■ the SP Provided Name ID Format ■ the SP Provided Name ID Qualifier ■ the SP Provided Name ID Version The following fields will be empty when the federation record is created: ■ the SP Provided Name ID Format. ■ the SP Provided Name ID Qualifier. ■ the SP Provided Name ID Version.

4.4.2 Identities - Federations

Use this page to locate and maintain federated identity records. Simple Search The following search fields are provided: ■ Provider ID: Enter a Provider ID and click Lookup to choose the correct ID from a list of trusted providers. Entering a Provider ID in this field will limit the search to Server Administration 4-25 only those federated identities created with the provider specified. If no Provider ID is specified, the search will be performed over the federated identities created with all trusted providers. ■ Search Value: Enter the value you wish to search for. If no value is specified, all federated identity records will be returned. The search returns a table of federation records. The table columns appearing in the table depend on the default display attributes configured in the search options configuration. Advanced Search Take these steps to perform an advanced search: ■ Enter a Provider ID, or part of one and click Lookup to choose the correct ID from a list of trusted providers. Entering a provider ID in this field will limit the search to only those federated identities created with the provider specified. If no Provider ID is specified, the search will be performed over the federated identities created with all trusted providers. ■ Check Include New and Old Name IDs in Search to include the new and old NameID values in the search for federation records. ■ Use the Operator radio buttons to specify whether the returned records must satisfy all conditions And or records satisfying any conditions Or. ■ Add attribute search conditions by following these steps: – Click Add Attribute. – A pop-up box appears. Use the drop-down list to select a federated identity attribute, and click OK. – The attribute appears as a search option. Select the comparator to use and the value to search for. ■ Click Search. To Manage Records To manage a displayed record, select the corresponding row. Buttons on the page provide these actions: ■ Update - Updates the Name ID of the federated identity by performing a Manage Name ID MNI operation. See Section 4.4.1, About Federated Identities for more details. ■ Delete - Terminates the federated identity by performing a Manage Name ID MNI operation with the Terminate flag set to true, and deletes the record. The functions are available for the SAML 2.0 and Liberty 1.x protocols. See Also: Section 4.4.4, Identities - Search Options Note: The new and old NameID fields are populated only if an update operation was previously performed on a federation record, and if the protocol is enabled. If NameID registration is disabled or if no update operation was ever performed, there is no need to include those fields during a search operation.