Getting Started
- Register the remote SP metadata
- Load this environment's IdP metadata into the remote SP
- Sign in with a fixed test user and inspect what the remote SP receives
Use this public guide when you want to connect to a remote SP and test this environment as a SAML IdP. It covers SP metadata registration, IdP metadata setup, SSO / SLO checks, and fixed-user attribute verification.
Three test users with different attribute shapes are available so you can verify how the remote SP handles single-value and multi-value attributes.
Returns a standard uid / mail / displayName / ePPN set.
Adds multivalue affiliation and entitlement attributes.
Returns only minimal uid and displayName values.
Use this guide when you need to test a SAML-enabled application or validation SP while treating this site as the IdP. It is useful for checking SP metadata, SSO / SLO wiring, and how the SP handles fixed-user attributes.
You can return to the SAML test home page or switch to the reverse-direction SAML SP testing guide.
You can inspect SP metadata import, this environment's IdP metadata, SSO / SLO endpoints, fixed-user attribute release, and what the SP receives after login.
They make it easier to compare how the SP handles both simple single-value attributes and multi-value attribute sets.
Metadata should be preferred whenever possible because it includes EntityID, ACS, certificates, and other required details in one package.
Both the public guide and the console expose them. When you configure the SP, make sure the host and path are copied exactly.
Check whether the ACS flow completes, whether NameID and required attributes are accepted, and whether multi-value attributes are handled cleanly.