12.4 Defining Session Synchronization for the A-Select SAML 2.0 Identity Provider

If a user session is active on the Service Provider, the service provider periodically sends session synchronization to the Identity Server to maintain the session. You must configure the properties for the session synchronization between the service provider and the target Identity provider.

  1. In the Administration Console, click Devices > Identity Servers > Servers > Edit > Liberty or SAML 2.0 > Identity Provider > Options.

  2. Click New > Add Properties, then specify the following values:

    Property Name: Specify config.aselect.sessionsync.enabled

    Property Value: Specify true.

  3. For session synchronization, add two options, one to enable the session synchronization and the other to provide the URL to which synchronization message should be sent.

    The session synchronization message is sent from the Access Manager Service Provider to the A-Select Identity Provider, in tandem with the Access Gateway ESP's activity update. The session synchronization message is sent only if the user session is active at the Access Gateway portal, which is the ESP to the Access Manager Service Provider. If you log in directly to the Access Manager Service Provider, even if the session is active, the session synchronization message is not sent to the A-Select Identity Provider.

  4. Click OK, then update the Identity Server.