Administer > System security > SAML Single Sign-On > SAML SSO setup > Configure SAML SSO using the standalone IdM > Configure IdM authentication in the Service Manager Server

Configure IdM authentication in the Service Manager Server

To enable IdM authentication in the Service Manager Server, follow these steps:

  1. Add the following parameters to the Server's sm.ini file, which is located in the Server's RUN folder:

    idmssoenabled:1
    idmsigningkey:<value>
    
    • The idmssoenabled parameter specifies if IdM SSO is enabled for the Service Manager Server.
    • The idmsigningkey parameter specifies a key that is used to sign IdM tokens. This value must match the value that is configured in the IdM service. For more information about the deployment and configuration of the IdM service, see Install and configure the standalone IdM service.
  2. Restart the Service Manager Server.

    Note The value of the idmsigningkey parameter is automatically encrypted after the Server is restarted. If you need to update the value later, remove the asterisk symbol (*) before the parameter name.

    The following is an example of the sm.ini file:

    shared_memory:32000000
    log:../logs/sm.log
    system:13080
    httpPort:13080
    sslConnector:0
    httpsPort:13443
    sqldictionary:sqlserver
    [sqlserver]
    sqldb:sm950
    *sqllogin:FGFG3C93D87BDA82C8F30E4A47018C08B9BCGFGF
    plugin0:kmplugin.dll
    
    idmssoenabled:1
    *idmsigningkey:FGFG7BF419C5FB03FAB18FB7167CF38C3E63GFGF
    
    ldapdisable:0
    ldapnostrictlogin:1
    ldapstats:1
    ldapauthenticateonly:0
    ldapbinddn:CN=domainadmin,CN=Users,DC=smadfs,DC=com
    *ldapbindpass:FGFG8E8E7BBF3C78009120636E3197763774GFGF