Select a Target Identity
When multiple signatures are in use, you must specify which identity is the signing identity for each assertion that requires a signature.
gateway83
When multiple signatures are in use, you must specify which identity is the signing identity for each assertion that requires a signature.
If multiple signatures are present in a message, you must specify the signing identity. Otherwise, the assertion will fail even if the element is signed.
To select a target identity
:- In the policy window, right-click on an assertion that deals with signatures and then chooseSelect TargetIdentity. Only assertions that support target identities will display this option. The Select Identity dialog appears.
- Select the target identity from the drop-down list. Note that you can either select a previously authorized user (i.e., "Bob [Internal Identity Provider]") or an identity tag (i.e., "tag1") that was defined earlier.
- Click [OK]. The selected identity is displayed in the policy as follows:[User: <Login>, <Provider Name>] (example: "[User: Alice, Internal Identity Provider]")[Group Membership: <Group Name>, <Provider Name>] (example: "[Group Membership: A Group, Internal Identity Provider]")[Authenticated against: <Provider Name>] (example: "[Authenticated against: Internal Identity Provider]")[Identity Tag: <Tag>] (example: "[Identity Tag: A-User_1, internal]")