Service Provider Metadata and Certificate Parent topic

Obtain the service provider metadata from Deep Discovery Inspector to provide to your identity provider.
On the SAML Authentication screen, the Service Provider section displays the following service provider information:
  • Entity ID: Identifies the service provider application
  • Single Sign On URL: The endpoint URL responsible for receiving and parsing a SAML assertion (also referred to as "Assertion Consumer Service")
  • Single Sign Off URL: The endpoint URL responsible for initiating the SAML logout process
  • Certificate: The encryption certificate (verification certificate) in X.509 format
You can click the following in the Service Provide section:
  • Download Metadata: Downloads the Deep Discovery Inspector metadata file. You can import the metadata file on an Active Directory Federal Services (ADFS).
    Note
    Note
    If you change the Deep Discovery Inspector FQDN after importing the metadata file on your identity provider, you will need to download the metadata file again and reimport the file on your identity provider.
  • Download Certificate: Downloads the Deep Discovery Inspector certificate file.
  • Update: Uploads a new certificate on Deep Discovery Inspector. The certificate must meet the following specifications:
    • The certificate must be in X.509 PEM format.
    • The certificate must not be protected by a password or pass phrase.
    • Certificates from a private CA or a CA chain must include Authority Information Access and CRL Distribution Points.