Method Signature

Validate (token : RequestSecurityTokenType) returns RequestSecurityTokenResponseType

Parameter

token : RequestSecurityTokenType – Security token request containing a SAML token previously obtained from a vCenter Single Sign-On server. The following RequestSecurityTokenType elements are required for a Validate request; the remaining elements are optional.

• RequestType – Must specify the URL “http://docs.oasis-open.org/ws-sx/ws-trust/200512/Validate”.
• ValidateTarget – Identifies the SAML token to be validated.
• Sig attribute (UseKey element) – Specifies a security token that contains an existing certificate key.
• Context attribute – Required if you include a BinaryExchangeType element for SSPI authentication.

Return Value

RequestSecurityTokenResponseType – Response containing the validated token.

Comments

Performs validation of the token and its subject. It includes but is not limited to validations of the following elements:

• Token signature
• Token lifetime
• Token subject
• Token delegates
• Group(s) to which the subject belongs