Generate instance service provider (SP) metadata for SAML

After setting all the integration properties, generate the instance SP metadata.

Before you begin

Role required: admin

About this task

The IdP needs the instance SP metadata to authenticate and forward requests.

Procedure

  1. Navigate to SAML 2 Single Sign-on > Metadata. The integration automatically generates the instance's SP metadata from the system property settings.
  2. Copy the SP metadata in the text box. For example:
    <EntityDescriptorxmlns="urn:oasis:names:tc:SAML:2.0:metadata"  entityID="https://demoi2.service-now.com"><SPSSODescriptor AuthnRequestsSigned="false"     WantAssertionsSigned="false"     protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"><SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"      Location="https://demoi2.service-now.com/navpage.do" /><NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</NameIDFormat><AssertionConsumerService isDefault="true"        index="0"        Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"        Location="https://demoi2.service-now.com/navpage.do"/></SPSSODescriptor></EntityDescriptor>
  3. Provide the instance SP metadata to the IdP. For example, SSOCircle allows a user to provide the SP metadata online.