<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<EntityConfig entityID="http://openam.example.com:8080/openam" hosted="true" xmlns="urn:sun:fm:SAML:2.0:entityconfig">
<IDPSSOConfig metaAlias="/idp">
<Attribute name="description">
<Value/>
</Attribute>
<Attribute name="signingCertAlias">
<Value>test</Value>
</Attribute>
<Attribute name="encryptionCertAlias">
<Value/>
</Attribute>
<Attribute name="basicAuthOn">
<Value>false</Value>
</Attribute>
<Attribute name="basicAuthUser">
<Value/>
</Attribute>
<Attribute name="basicAuthPassword">
<Value/>
</Attribute>
<Attribute name="autofedEnabled">
<Value>false</Value>
</Attribute>
<Attribute name="autofedAttribute">
<Value/>
</Attribute>
<Attribute name="assertionEffectiveTime">
<Value>600</Value>
</Attribute>
<Attribute name="idpAuthncontextMapper">
</Attribute>
<Attribute name="idpAuthncontextClassrefMapping">
<Value>urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport|0||default</Value>
</Attribute>
<Attribute name="idpAccountMapper">
</Attribute>
<Attribute name="idpAttributeMapper">
</Attribute>
<Attribute name="assertionIDRequestMapper">
</Attribute>
<Attribute name="nameIDFormatMap">
<Value>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress=mail</Value>
<Value>urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName=</Value>
<Value>urn:oasis:names:tc:SAML:1.1:nameid-format:WindowsDomainQualifiedName=</Value>
<Value>urn:oasis:names:tc:SAML:2.0:nameid-format:kerberos=</Value>
<Value>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified=</Value>
</Attribute>
<Attribute name="idpECPSessionMapper">
</Attribute>
<Attribute name="attributeMap">
<Value>uid=uid</Value>
<Value>sn=sn</Value>
<Value>cn=cn</Value>
</Attribute>
<Attribute name="wantNameIDEncrypted">
<Value/>
</Attribute>
<Attribute name="wantArtifactResolveSigned">
<Value/>
</Attribute>
<Attribute name="wantLogoutRequestSigned">
<Value/>
</Attribute>
<Attribute name="wantLogoutResponseSigned">
<Value/>
</Attribute>
<Attribute name="wantMNIRequestSigned">
<Value/>
</Attribute>
<Attribute name="wantMNIResponseSigned">
<Value/>
</Attribute>
<Attribute name="cotlist">
<Value>cot</Value>
</Attribute>
<Attribute name="discoveryBootstrappingEnabled">
<Value>false</Value>
</Attribute>
<Attribute name="assertionCacheEnabled">
<Value>false</Value>
</Attribute>
<Attribute name="assertionNotBeforeTimeSkew">
<Value>600</Value>
</Attribute>
<Attribute name="saeAppSecretList"/>
<Attribute name="saeIDPUrl">
</Attribute>
<Attribute name="AuthUrl">
<Value/>
</Attribute>
<Attribute name="appLogoutUrl">
<Value/>
</Attribute>
<Attribute name="idpSessionSyncEnabled">
<Value>false</Value>
</Attribute>
<Attribute name="relayStateUrlList"/>
</IDPSSOConfig>
<AttributeAuthorityConfig metaAlias="/attra">
<Attribute name="signingCertAlias">
<Value>test</Value>
</Attribute>
<Attribute name="encryptionCertAlias">
<Value>test</Value>
</Attribute>
<Attribute name="default_attributeAuthorityMapper">
</Attribute>
<Attribute name="x509Subject_attributeAuthorityMapper">
</Attribute>
<Attribute name="x509SubjectDataStoreAttrName">
<Value/>
</Attribute>
<Attribute name="assertionIDRequestMapper">
</Attribute>
</AttributeAuthorityConfig>
</EntityConfig>