Navigate to System Configuration > Services.
In the Access Services section, under SAML Identity Provider, click Configure.
Select Enable SAML 2.0 Identity Provider service.
In the Entity ID field, provide the ID of the Identity Provider (IdP). (In general, the ID will be in an URL format, such as
In the Endpoint FQDN field, select a Workplace site on which service providers (SAML applications)
should send SAML requests to the IdP.
You can use an existing Workplace site or create a new dedicated Workplace site to use as a
dedicated IdP site.
In the Signing certificate field, the certificate used to signed IdP messages is selected automatically.
You can export SAML metadata of this identity provider by clicking Export.
This metadata contains the endpoints and signing certificate of SMA IdP. It can be imported to your SAML
applications to configure their IdP endpoints and certificates.