Recently went through similar thing and came across this thread. I
successfully configured SAML for admin login and SSL VPN and wanted to
add a few notes here for future reference.The IDP/SP IDs are just URIs.
There doesn't have to by any metadata xm...