Developers may use a mix of SAML for Single Sign-on and Selerix web services for various integration tasks.  In addition, developers may use classes defined in the Selerix .NET library to build a Selerix Data Transmittal that can be used by either type of remote procedure call.  Because of its versatility, a mixed technology approach is often the best plan for integration developers.

Selerix supports SAML v1.1 for the purpose of launching an authenticated BenSelect enrollment session where applicant census data is preloaded on the case.  Because this approach does not include private applicant data, SAML v1.1 is an acceptable approach to authenticate an integration session for subsequent use with Selerix web services.  SAML v2.0 is required when data is included as part of the SAML message.

To use SAML v1.1 when applicant data does not already exist on BenSelect, start by uploading applicant information by posting a Selerix data transmittal to BenSelect using Selerix Web Services and follow up with SAML v1.1 to authenticate and launch the enrollment, then proceed as follows:

1. Modify the SAML 1.1 template as appropriate.
2. As with the SAML 2.0 approach, because you are the Identity Provider, skip the SAML authentication request step [samlp:AuthnRequest] and initiate the BenSelect enrollment in a single step by posting a SAML response [samlp:Response] that contains the applicant's employee ID [EmployeeIdent].  Remember that SAML v2.0 is required when you wish to include a Selerix applicant data transmittal within the SAML envelope.
3. Pass the employee ID, referred to as EmployeeIdent in the Selerix data model, in the SAML NameIdentifier element.
   1. Unlike the web services approach, once you connect to BenSelect using SAML for SSO, the system automatically launches the enrollment session.  There is no need to obtain a login GUID or launch the enrollment site.
4. Once the enrollment is complete BenSelect delivers enrollment data to the URL you defined in the SAML XML.  To obtain enrollment data, you may alternatively use a web service Query to obtain the data at a later time.