Configuring an Enterprise IdP

You can configure parameters in the enterprise IdP to determine what information will be sent to Huawei Cloud. Huawei Cloud authenticates the federated identity and assigns permissions based on the received information and identity conversion rules.

Common Parameters in an Enterprise IdP

**Table 1** Common parameters in an enterprise IdP
Parameter	Description	Scenario
IAM_SAML_Attributes_redirect_url	Target URL which the federated user will be redirected to	During SSO login, the federated user will be redirected to a page on Huawei Cloud, for example, the Cloud Eye homepage in the EU-Dublin region.
IAM_SAML_Attributes_domain_id	Account ID of Huawei Cloud to be federated with the enterprise IdP	This parameter is mandatory in the enterprise IdP-initiated federation.
IAM_SAML_Attributes_idp_id	Name of the IdP entity created on Huawei Cloud	This parameter is mandatory in the enterprise IdP-initiated federation.
IAM_SAML_Attributes_session_duration	Maximum session duration for federated login Value range: 900s to 86,400s	Once configured, this parameter defines the absolute time limit for a federated login session. If the session duration exceeds this value, the system automatically terminates the session and logs the user out.
IAM_SAML_Attributes_identityProviders	List of multi-tenant IdPs for enterprise IdP federation	This parameter is required when multi-tenant support is enabled for enterprise IdP-initiated federation.

Parent topic: Virtual User SSO via SAML

Previous topic: Creating an IdP Entity

Next topic: Configuring Identity Conversion Rules

Feedback

Was this page helpful?

Helpful Not helpful

Provide feedback

Thank you very much for your feedback. We will continue working to improve the documentation.

The system is busy. Please try again later.