FidoAuthenticatorSAML
Used when acting as an IDP and using FIDO2 token as the authentication method. Authentication is done by using a user name and a pre-enrolled FIDO token.
Used when acting as an IDP and using FIDO2 token as the authentication method. Authentication is done by using a user name and a pre-enrolled FIDO token.
Name | Description | Default value | Mandatory |
idpID | The internal identifier of the idp used | N/A | Yes |
pipeID | Id of the pipe used to issue the SAML assertion | N/A | Yes |
samlAuthMethod | What value is set in the AuthnContextClassRef | urn:oasis:names:tc:SAML:2.0:ac:classes:TLSClient | No |
loginTemplate | UI template used for rendering enduser UI | fido2.template | No |
userNameParamName | Parameter where password resides in the incoming request | username | Yes |
sendSAMLResponseOnError | Whether or not a SAMLResponse containing an error response should be sent back to the SP upon an internal authentication error. | false | No |
strictValidation | Whether or not additional validation checks should be made on the SAMLRequest. | false | No |
resolveSAMLRequestProperties | Whether or not request properties from the SAML AuthnRequest should be resolved before proceeding with the authentication. Typically used at the start of an authentication flow. | false | No |