1) Create Logon Procedure
In the DualShield Administration Console, navigate to "Authentication | Logon Procedures".
Click the "+CREATE" button to create a new Logon Procedure like follows:
Name: Apereo (or use any recognisable friendly name)
Type: Web SSO
Click the "SAVE" button to complete creation of the Logon Procedure.
2) Add Logon steps
Highlight the context "..." menu on the Logon Procedure, then select "Logon Steps"
Select the desired authentication methods, for example, "Static Password" (AD Password), then "One-time Password"...
3) Create an Application
On the Administration Console, navigate to "Authentication | Applications".
Create a new Application like follows:
Name: Apereo (or use another friendly name)
Realm: Select your interna; AD Realm
Logon Procedure: As created in the previous step.
4) Bind the Application to an SSO Server Agent
Select the context "..." menu on the newly created Application, then select "Agents"
Select from the Agent list, "Single Sign-on Server". Then select "SAVE" button to confirm.
5) Download the IDP Metadata file
Navigate to "SSO | SSO Servers"
Select the context "..." menu on "Single Sign-on Server", then option "Download IdP MetaData"
The browser will save "Single Sign-on Server metadata.xml" to your local machine.