Differences to be aware of when configuring RSA SecurID Access Cloud IdP vs IDR IdP
Originally Published: 2018-11-07
Article Number
Applies To
Issue
- Configure the IDR IdP as described in Add a SAML Application.
- Configure the Cloud IdP as described in Add a Relying Party.
Resolution
| Cloud IdP | IDR IdP |
|---|---|
| Creates its own signing certificate | Admin generates and uploads signing certificate |
| Assertion signatures use the SHA-256 hashing algorithm | Assertion signatures use the SHA-1 hashing algorithm by default. Other algorithms including SHA-256 can be configured. |
| Assertion signing is performed on the“Assertion within response” | Assertion signing defaults to “Entire SAML response” but can be configured to be “Assertion within response” |
| The User Identity NameID type is auto-detected | You must specify the User Identity NameID type |
| Extended Attributes are automatically hunted for in all Identity Sources by default | Extended Attributes must be configured with the specific Identity Source where they can be found |
| IdP URL is found only in the IdP metadata file | IdP URL is auto populated in the configuration page |
| 3rd party Service Provider must support SP-initiated SAML | Supports IdP-initiated or SP-initiated SAML |
| Identity Source User Attributes page must have "Synchronize the selected policy attributes with the Cloud Authentication Service" checked. | This checkbox is not applicable |
Notes
The cloud IdP provides primary and/or additional multi-factor authentication for SaaS applications but does not provide single sign-on.
Related Articles
Difference between a Delegate Reviewer and Alternate Manager in Access Certifications using Identity Governance & Lifecycle Number of Views What is the difference between RSA ACE/Agent 5.x for UNIX and a Communications Server? Number of Views What is the difference between a client and server certificate? Number of Views LDAP sync job cannot delete RSA ACE/Server user marked for deletion Number of Views Is there an RSA Authentication Manager local database Connector and Collector for RSA Identity Governance and Lifecycle? Number of Views
Trending Articles
Troubleshooting RSA SecurID Access Identity Router to RSA Authentication Manager test connection failures RSA SecurID Software Token 5.0.2 Downloads for Microsoft Windows RSA Authentication Manager 8.9 Release Notes (January 2026) Quick Setup Guide - Passwordless Authentication in Windows MFA Agent for Active Directory RSA Authentication Manager 8.8 Setup and Configuration Guide
Don't see what you're looking for?
