You must generate SAML metadata on the Unified Access Gateway manament appliance and exchange metadata with the server to establish the mutual trust required for smart card authentication. For more information see, Deploying and Configuring Unified Access Gateway.

The Security Assertion Markup Language (SAML) is an XML-based standard that is used to describe and exchange authentication and authorization information between different security domains. SAML passes information about users between identity providers and service providers in XML documents called SAML assertions. In this scenario, Unified Access Gateway is the identity provider and the server is the service provider.

Procedure

  1. Log in to the Management Appliance and go to Configuration Templates
  2. Click Add.
  3. In the Advanced Settings section, click Configure.
  4. In the admin UI Configure Manually section, click Select.
  5. Expand the SAML Identity Provider Settings
  6. Select the Provide Certificate check box.
  7. To add the Private Key file, click Select and browse to the private key file for the certificate.
  8. For add the Certificate Chain file, click Select and browse to the certificate chain file.
  9. Click Done.
  10. In the Hostname text box, enter the hostname and download the identity provider settings.