I am trying to configure Access Manager to use Liberty Profile for
authenticating all WebService calls, but we are not using any external
All documentation examples are for configuring an external IDP for
federation, but we only need to find a way to generate SAML assertions
to be inserted in SOAP calls, and configure Access Manager to verify all
secured SOAP messages to ensure the assertion is present and is valid.
All WebService calls will be internal, started from Web apps using
JBOSS. This is the easier path, because we can inject the SAML assertion
in AG, but we also have client-server apps, which calls WebServices from
client stations. How can we obtain a SAML assertion in this case?
After obtaining the SAML assertion, wich configuration
(contract/class/method) must be done in AG to validate the assertion?

jluizberg's Profile: https://forums.netiq.com/member.php?userid=2003
View this thread: https://forums.netiq.com/showthread.php?t=47026