<samlp:Response ID="_67c91960-167b-4fb2-9262-291d9b2ed875"
Version="2.0"
IssueInstant="2020-03-24T19:46:07.207Z"
Destination="https://auth.orionadvisor.com/sso/samlconsumer"
xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
>
<saml:Issuer>https://sso.oriondemo.com/fed</saml:Issuer>
<Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
<SignedInfo>
<CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
<SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" />
<Reference URI="#_67c91960-167b-4fb2-9262-291d9b2ed875">
<Transforms>
<Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" />
<Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
<InclusiveNamespaces PrefixList="#default samlp saml ds xs xsi"
xmlns="http://www.w3.org/2001/10/xml-exc-c14n#"
/>
</Transform>
</Transforms>
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
<DigestValue>Fr7npOmmwBb9JRX5PLb+H1bnAs4=</DigestValue>
</Reference>
</SignedInfo>
<SignatureValue>JR2ZioHYqzfU1ZYSGvzwMxx1S..........PVnNJocG7sNG9YHljpmMjbYwFcYVGSA==</SignatureValue>
</Signature>
<samlp:Status>
<samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" />
</samlp:Status>
<saml:Assertion Version="2.0"
ID="_f9755d5d-5093-428b-bb1c-6166c802c9e9"
IssueInstant="2020-03-24T19:46:07.208Z"
xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
>
<saml:Issuer>https://sso.oriondemo.com/fed</saml:Issuer>
<Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
<SignedInfo>
<CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
<SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" />
<Reference URI="#_f9755d5d-5093-428b-bb1c-6166c802c9e9">
<Transforms>
<Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" />
<Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
<InclusiveNamespaces PrefixList="#default saml ds xs xsi"
xmlns="http://www.w3.org/2001/10/xml-exc-c14n#"
/>
</Transform>
</Transforms>
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
<DigestValue>+kSlkRHaN6lEp0GCknTPY/5WiXY=</DigestValue>
</Reference>
</SignedInfo>
<SignatureValue>PqwVwCFOONbipX18xxwM2LRYDGb7............iKqUEv5x5R/DVgGW9nZ/s6jZ31wz7575/sdNn2lxl1GRSIkwOChQ3maLE+18KXQ==</SignatureValue>
<KeyInfo>
<X509Data>
<X509Certificate>MIIDFTCCAf2gAwIBAgIQ8xxG9w0BAQxxQQQEA1QLlrEGhuBQ9Zrtce9a7y4f..................WB062A9lkuCFexxPJnJmtG7tKzFIbH5YQRgDpxx57XAgjyCx+bMc7HSTA==</X509Certificate>
</X509Data>
</KeyInfo>
</Signature>
<saml:Subject>
<saml:NameID Format="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">OCTestClient</saml:NameID>
<saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
<saml:SubjectConfirmationData NotOnOrAfter="2020-03-24T19:48:07.206Z"
Recipient="https://auth.orionadvisor.com/sso/samlconsumer"
/>
</saml:SubjectConfirmation>
</saml:Subject>
<saml:Conditions NotBefore="2020-03-24T19:46:07.206Z"
NotOnOrAfter="2020-03-24T19:48:07.206Z"
>
<saml:AudienceRestriction>
<saml:Audience>yourURLhere.com</saml:Audience>
</saml:AudienceRestriction>
</saml:Conditions>
<saml:AuthnStatement AuthnInstant="2020-03-24T19:46:07.211Z">
<saml:AuthnContext>
<saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:unspecified</saml:AuthnContextClassRef>
</saml:AuthnContext>
</saml:AuthnStatement>
****Not Required***
<saml:Attribute Name="firmId"
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic"
FriendlyName="firmId"
>
<saml:AttributeValue>488</saml:AttributeValue>
</saml:Attribute>
****Not Required***
****Required***
<saml:Attribute Name="partnerId"
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic"
FriendlyName="partnerId"
>
<saml:AttributeValue>(YourPartnerIDhere)</saml:AttributeValue>
</saml:Attribute>
<saml:Attribute Name="authFlow"
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic"
FriendlyName="authFlow"
>
<saml:AttributeValue>TrustedPrompt</saml:AttributeValue>
</saml:Attribute>
****Not Required***
<saml:Attribute Name="username"
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic"
FriendlyName="username"
>
<saml:AttributeValue>usersname@yahoo.com</saml:AttributeValue>
</saml:Attribute>
</saml:AttributeStatement>
</saml:Assertion>
</samlp:Response>
