English | Français

SAML 2.0 IdP Metadata

Here is the metadata that SimpleSAMLphp has generated for you. You may send this metadata document to trusted partners to setup a trusted federation.

You can get the metadata xml on a dedicated URL:

https://io-authent-ppd.hermes.com/saml2/idp/metadata.php

Metadata

In SAML 2.0 Metadata XML format:

<?xml version="1.0"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://io-authent-ppd.hermes.com/saml2/idp/metadata.php">
  <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
    <md:KeyDescriptor use="signing">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:KeyDescriptor use="encryption">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://io-authent-ppd.hermes.com/saml2/idp/SingleLogoutService.php"/>
    <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat>
    <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://io-authent-ppd.hermes.com/saml2/idp/SSOService.php"/>
  </md:IDPSSODescriptor>
</md:EntityDescriptor>

In SimpleSAMLphp flat file format - use this if you are using a SimpleSAMLphp entity on the other side:

$metadata['https://io-authent-ppd.hermes.com/saml2/idp/metadata.php'] = array (
  'metadata-set' => 'saml20-idp-remote',
  'entityid' => 'https://io-authent-ppd.hermes.com/saml2/idp/metadata.php',
  'SingleSignOnService' => 
  array (
    0 => 
    array (
      'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect',
      'Location' => 'https://io-authent-ppd.hermes.com/saml2/idp/SSOService.php',
    ),
  ),
  'SingleLogoutService' => 
  array (
    0 => 
    array (
      'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect',
      'Location' => 'https://io-authent-ppd.hermes.com/saml2/idp/SingleLogoutService.php',
    ),
  ),
  'certData' => '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',
  'NameIDFormat' => 
  array (
    0 => 'urn:oasis:names:tc:SAML:2.0:nameid-format:persistent',
  ),
);

Certificates

Download the X509 certificates as PEM-encoded files.