Skip to content
Was this article helpful?

tm samlSSOProfile

The following operations can be performed on "tm samlSSOProfile":

add | rm | set | unset | show

add tm samlSSOProfile

Creates a SAML single sign-on profile. This profile is employed in triggering saml assertion to a target service based on traffic profile.

Synopsys

add tm samlSSOProfile <name> -samlSigningCertName <string> -assertionConsumerServiceURL <URL> -relaystateRule <expression> [-sendPassword ( ON | OFF )] [-samlIssuerName <string>]

Arguments

name

Name for the new saml single sign-on profile. Must begin with an ASCII alphanumeric or underscore (_) character, and must contain only ASCII alphanumeric, underscore, hash (#), period (.), space, colon (:), at (@), equals (=), and hyphen (-) characters. Cannot be changed after an SSO action is created.

The following requirement applies only to the NetScaler CLI:

If the name includes one or more spaces, enclose the name in double or single quotation marks (for example, "my action" or 'my action').

samlSigningCertName

Name of the signing authority as given in the SAML server?s SSL certificate.

assertionConsumerServiceURL

URL to which the assertion is to be sent.

relaystateRule

Expression to extract relaystate to be sent along with assertion. Evaluation of this expression should return TEXT content. This is typically a targ

et url to which user is redirected after the recipient validates SAML token

sendPassword

Option to send password in assertion.

Possible values: ON, OFF

Default value: OFF

samlIssuerName

The name to be used in requests sent from Netscaler to IdP to uniquely identify Netscaler.

rm tm samlSSOProfile

Deletes an existing saml single sign-on traffic profile.

Synopsys

rm tm samlSSOProfile <name>

Arguments

name

Name for the new saml single sign-on profile. Must begin with an ASCII alphanumeric or underscore (_) character, and must contain only ASCII alphanumeric, underscore, hash (#), period (.), space, colon (:), at (@), equals (=), and hyphen (-) characters. Cannot be changed after an SSO action is created.

The following requirement applies only to the NetScaler CLI:

If the name includes one or more spaces, enclose the name in double or single quotation marks (for example, "my action" or 'my action').

set tm samlSSOProfile

Modifies the specified attributes of a saml single sign-on traffic profile.

Synopsys

set tm samlSSOProfile <name> [-samlSigningCertName <string>] [-assertionConsumerServiceURL <URL>] [-sendPassword ( ON | OFF )] [-samlIssuerName <string>] [-relaystateRule <expression>]

Arguments

name

Name for the new saml single sign-on profile. Must begin with an ASCII alphanumeric or underscore (_) character, and must contain only ASCII alphanumeric, underscore, hash (#), period (.), space, colon (:), at (@), equals (=), and hyphen (-) characters. Cannot be changed after an SSO action is created.

The following requirement applies only to the NetScaler CLI:

If the name includes one or more spaces, enclose the name in double or single quotation marks (for example, "my action" or 'my action').

samlSigningCertName

Name of the signing authority as given in the SAML server?s SSL certificate.

assertionConsumerServiceURL

URL to which the assertion is to be sent.

sendPassword

Option to send password in assertion.

Possible values: ON, OFF

Default value: OFF

samlIssuerName

The name to be used in requests sent from Netscaler to IdP to uniquely identify Netscaler.

relaystateRule

Expression to extract relaystate to be sent along with assertion. Evaluation of this expression should return TEXT content. This is typically a targ

et url to which user is redirected after the recipient validates SAML token

unset tm samlSSOProfile

Use this command to remove tm samlSSOProfile settings.Refer to the set tm samlSSOProfile command for meanings of the arguments.

Synopsys

unset tm samlSSOProfile <name> [-samlSigningCertName] [-sendPassword] [-samlIssuerName]

show tm samlSSOProfile

Displays information about all configured saml single sign-on profiles, or displays detailed information about the specified action.

Synopsys

show tm samlSSOProfile [<name>]

Arguments

name

Name for the new saml single sign-on profile. Must begin with an ASCII alphanumeric or underscore (_) character, and must contain only ASCII alphanumeric, underscore, hash (#), period (.), space, colon (:), at (@), equals (=), and hyphen (-) characters. Cannot be changed after an SSO action is created.

The following requirement applies only to the NetScaler CLI:

If the name includes one or more spaces, enclose the name in double or single quotation marks (for example, "my action" or 'my action').

summary

fullValues

format

level

Outputs

samlSigningCertName

Name of the signing authority as given in the SAML server?s SSL certificate.

assertionConsumerServiceURL

URL to which the assertion is to be sent.

sendPassword

Option to send password in assertion.

samlIssuerName

The name to be used in requests sent from Netscaler to IdP to uniquely identify Netscaler.

relaystateRule

Expression to extract relaystate to be sent along with assertion. Evaluation of this expression should return TEXT content. This is typically a targ

et url to which user is redirected after the recipient validates SAML token

devno

count

stateflag

Was this article helpful?