Hi all,

We are in a situation where we need to use only one client certificate from multiple instances of Salesforce in the HTTP request for the third party webservice API calls. There is a method “setClientCertificate” to set certificate but found that it is deprecated. Is it safe to use this method to make client API calls? Or is there any other approach where we can use the same certificate across different Salesforce instances?

The details of this method can be found in below help link:

http://www.salesforce.com/us/developer/docs/dbcom_apex250/index_Left.htm#CSHID=apex_classes_restful_http_httprequest.htm|StartTopic=Content%2Fapex_classes_restful_http_httprequest.htm|SkinName=webhelp

Thanks in advance!

 We are setting up a SSO in Salesforce org with a Federated authentication where Salesforce is an Identity provider and our partner application is a Service provider. We were able to generate the SAML assertion to the Service Provider (IDP initiated login). Currently, the size of SAML assertion that is being generated is around 12 KB and our service provider cannot accommodate the assertion of this size. So we need to reduce the assertion size to 5 KB. Is there a way to reduce the assertion size?

1. The service provider doesn’t need the certification information in the SAML assertion but the assertion should be signed. Is there an option in Salesforce to NOT to include the certificate information in the assertion?
2. Is there a way in Salesforce to exclude the default attributes such as UserId, Username, Email and  Is_Portal_User being sent in the SAML assertion which are not required?

Thanks in advance!!!                 

 We are setting up a SSO in Salesforce org with a Federated authentication where Salesforce is an Identity provider and our partner application is a Service provider. We were able to generate the SAML assertion to the Service Provider (IDP initiated login). Currently, the size of SAML assertion that is being generated is around 12 KB and our service provider cannot accommodate the assertion of this size. So we need to reduce the assertion size to 5 KB. Is there a way to reduce the assertion size?

• The service provider doesn’t need the certification information in the SAML assertion but the assertion should be signed. Is there an option in Salesforce to NOT to include the certificate information in the assertion?
• Is there a way in Salesforce to exclude the default attributes such as UserId, Username, Email and  Is_Portal_User being sent in the SAML assertion which are not required?

Thanks in advance!
                 

Hi Support team,

We are setting up SSO in Salesforce org with Federated authentication in which Salesforce is an Identity provider and a third party application is a Service provider. We were able to generate the SAML assertion to the Service Provider. But, Service Provider is expecting to fetch additional attributes from the Identity provider using the Attribute Query Service and below are the questions pertaining to this.

• Where to specify the Attribute Query URL in Salesforce? Couldn’t find any information on Salesforce help
• How can we achieve this with in Salesforce? Is there any specific setting for this?
• Is it sufficient if we provide the Identity provider URL to Service provider for the additional Attribute Query?

Kindly guide us in the right direction to achieve this and we are expecting the response ASAP.

Thanks in advance!

 

Hi all,

We are in a situation where we need to use only one client certificate from multiple instances of Salesforce in the HTTP request for the third party webservice API calls. There is a method “setClientCertificate” to set certificate but found that it is deprecated. Is it safe to use this method to make client API calls? Or is there any other approach where we can use the same certificate across different Salesforce instances?

The details of this method can be found in below help link:

http://www.salesforce.com/us/developer/docs/dbcom_apex250/index_Left.htm#CSHID=apex_classes_restful_http_httprequest.htm|StartTopic=Content%2Fapex_classes_restful_http_httprequest.htm|SkinName=webhelp

Thanks in advance!

Hi Support team,

We are setting up SSO in Salesforce org with Federated authentication in which Salesforce is an Identity provider and a third party application is a Service provider. We were able to generate the SAML assertion to the Service Provider. But, Service Provider is expecting to fetch additional attributes from the Identity provider using the Attribute Query Service and below are the questions pertaining to this.

• Where to specify the Attribute Query URL in Salesforce? Couldn’t find any information on Salesforce help
• How can we achieve this with in Salesforce? Is there any specific setting for this?
• Is it sufficient if we provide the Identity provider URL to Service provider for the additional Attribute Query?

Kindly guide us in the right direction to achieve this and we are expecting the response ASAP.

Thanks in advance!