SAML authentication for web services

I am trying to use Software AG provided SAML authentication policies for implementing WS-Security. Has anyone succesfully used these policies? I have basic questions regarding these policies for which I did not get any information from documentation.

  1. What are the requirements for the security token service (STS) used by these policies? I tried using CXF-STS and JBoss Picketlink STS, but did not have any success. Does SoftwareAG recommend any specific STS implementation?
  2. It seems the out of box policies are supported only by the provider descriptor. How do we implement SAML authentication on the consumer descriptor?
  3. Is there any sample/demo avaialable regarding these?

Please check these articles if you haven’t and some notes should help.

http://www.wmusers.com/forum/showthread.php?21660-Using-WS-security-policy-on-consumer-WSD&highlight=WS-security

http://www.wmusers.com/forum/showthread.php?14720-WS-Security&highlight=WS-security

Rama, Thanks for the pointers. I am familiar with how to use X.509 and Username token policies. However there isn’t enough information about SAML policy implementation in webMethods. My question was specific to SAML authentication.

You really mean using SAML tokens for WS-Security?..

http://www.wmusers.com/forum/showthread.php?10878-webMethods-SOAP-WSSE-SAML&highlight=SAML+authentication

HTH,
RMG