...
- Log in as an admin to the Management Console and access the Security Token Service. See Starting Identity Server Management Console.
Enter the trusted relying parties.
Info title Tip These relying parties will accept security tokens from the Identity Server.
- Upload the public certificate of the trusted relying party (against its end-point).
- The tokens issued are encrypted using the public key of the trusted relying party. Accordingly, even the client who obtains the token to send to the RP has no visibility to the included token.
Now, apply this security to the STS. You must provideUsernameToken-based security, which means that the client should have a valid user account with the Identity Server to obtain a token from the STS. - Click on the Apply Security Policy link to configure security and go through the wizard.
- Configure security and go through the wizard.
- Select UsernameToken from the Basic Scenario list.
- Click Next.
- Choose Internal/everyone from the User Groups list.
- Click Finish.
- Select UsernameToken from the Basic Scenario list.
...