SAML 2.0 IdP Metadata

Here is the metadata that SimpleSAMLphp has generated for you. You may send this metadata document to trusted partners to setup a trusted federation.

You can get the metadata xml on a dedicated URL:

https://sso.amedi.sk/simplesaml/saml2/idp/metadata.php

Metadata

In SAML 2.0 Metadata XML format:

<?xml version="1.0" encoding="UTF-8"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://sso.amedi.sk/simplesaml/saml2/idp/metadata.php">
  <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
    <md:KeyDescriptor use="signing">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:KeyDescriptor use="encryption">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://sso.amedi.sk/simplesaml/saml2/idp/SingleLogoutService.php"/>
    <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
    <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://sso.amedi.sk/simplesaml/saml2/idp/SSOService.php"/>
  </md:IDPSSODescriptor>
  <md:ContactPerson contactType="technical">
    <md:GivenName>Administrator</md:GivenName>
    <md:EmailAddress>mailto:mario@siska.sk</md:EmailAddress>
  </md:ContactPerson>
</md:EntityDescriptor>

In SimpleSAMLphp flat file format - use this if you are using a SimpleSAMLphp entity on the other side:

$metadata['https://sso.amedi.sk/simplesaml/saml2/idp/metadata.php'] = [
    'metadata-set' => 'saml20-idp-remote',
    'entityid' => 'https://sso.amedi.sk/simplesaml/saml2/idp/metadata.php',
    'SingleSignOnService' => [
        [
            'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect',
            'Location' => 'https://sso.amedi.sk/simplesaml/saml2/idp/SSOService.php',
        ],
    ],
    'SingleLogoutService' => [
        [
            'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect',
            'Location' => 'https://sso.amedi.sk/simplesaml/saml2/idp/SingleLogoutService.php',
        ],
    ],
    'certData' => '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',
    'NameIDFormat' => 'urn:oasis:names:tc:SAML:2.0:nameid-format:transient',
    'contacts' => [
        [
            'emailAddress' => 'mario@siska.sk',
            'contactType' => 'technical',
            'givenName' => 'Administrator',
        ],
    ],
];

Certificates

Download the X509 certificates as PEM-encoded files.

idp.crt