WCF WS federation http bindings WCF Client
Set up SecureConv (STS X509 + Client SAML
Web Service In DMZ
Request secured by SCT
Response secured by SCT
WS-SecurityPolicy Enabled WS-Proxy
Cancel the SecureConv when all requests are done
2. SAML HoK Token
signEnabled Actions verify
DataPower WCF integration
© 2010 IBM Corporation
The SAML STS in this diagram can be hosted anywhere. In the scenario we tried, it was hosted on the Windows server itself. Note that DataPower is not yet supported to act as this SAML STS.
The secure conversation shown in step 3 is not optional.
Page 7 of 19