All Questions
Tagged with single-sign-on saml-2.0
717
questions
96
votes
4
answers
131k
views
What is exactly RelayState parameter used in SSO (Ex. SAML)?
I am trying to understand SSO using SAML. I have come across the RelayState parameter and am very confused exactly why it comes first in SSO to send encoded URLs? What exactly does it mean?
Please ...
69
votes
3
answers
46k
views
SAML/ADFS node.js implementation guide?
I'd like to preface this by saying that until now, I hadn't even HEARD of SAML, much less developed a SSO strategy involving it. That, combined with the fact that I've barely been doing node for a ...
45
votes
3
answers
88k
views
SAML simple example for beginners
I am beginner to the SAML v2.0 technology and I get the theory knowledge but I didn't find any examples on Google. Can anybody provide me with a step by step example for simple "SAML for v2.0".
Upto ...
37
votes
1
answer
1k
views
Custom Claim Handling Failed In Single Sign On
I am using the WSO2 Identity Server for Single Sign-On Implementations.
In my demo applications, I am trying to get Custom claim attributes of authenticated Users from my own JDBC Database.
I ...
24
votes
1
answer
15k
views
Single Sign-On in Spring by using SAML Extension and Shibboleth
I'd like to implement a Single Sign-on (SSO) authentication layer in my Spring-based application with the aim of supporting authentication and authorization from different security domains.
I've ...
24
votes
2
answers
9k
views
SSO: How to synchronize user accounts between service provider and Identity Provider?
In a SSO environment, though the user accounts are maintained at IdP, some Service Providers do maintain a database having active user accounts. Now if a user is deactivated at IdP, what is the best ...
20
votes
5
answers
36k
views
Google SAML SSO - 403 app_not_configured_for_user error when signed into personal Google account
I'm working on a SAML SSO integration for our app using Google / G Suite. Our customers configure our SAML app in their company's G Suite admin settings. The integration works correctly in most cases:
...
19
votes
2
answers
18k
views
What is the relation between CAS vs SAML?
I understand that CAS and SAML are different protocols used for Single-sign on purposes but, what confuses me is articles that say "CAS has an SAML implementation".
Aren't CAS and SAML different ways ...
18
votes
4
answers
21k
views
How do I set up a local test SAML2.0 Identity Provider?
As a Service Provider (SP) I have written a node.js service to processes SAML2.0 Assertions. I would now like to test this code.
I am aware that I can use various cloud-based services to act as my ...
16
votes
1
answer
6k
views
Can I provide the username to use in a SAML request? (AD FS)
When initiating a SAML authentication request (from the Service Provider), is there any way to give the Identity Provider a hint as to which username to use? In my application I know which user it ...
15
votes
2
answers
19k
views
Steps to implement SSO for php application
I am a newbie in SSO implementation. We are looking at implementing SSO for a client that uses a php application (supported by us), for their employees to login to the application. We are in the ...
15
votes
1
answer
7k
views
What is the best SSO solution for a native mobile app which can support multiple IDPs?
In our current situation, our web-based application(SP) has already integrated SSO using Spring Security SAML extension. Our product is a SaaS and we have different clients who may have different IDPs ...
13
votes
2
answers
30k
views
How to create a self-signed x509 certificate with both private and public keys?
I am creating an SSO "proof of concept" using SAML2 and ADFS2 (IdP). Log In is working fine, however ADFS2 is requiring that my Logout request be signed (with a private key) and then I would imagine ...
12
votes
2
answers
17k
views
What is the purpose of SAML 2 Subject Name Identifier?
When doing authn against a SAML 2 IdP, what does the Subject Name Identifier supposed to be for? Does it track each user login?
I'm wondering if my SAML 2 service provider application should track ...
12
votes
1
answer
8k
views
How to configure Single Logout when using Google Apps as the Identity Provider?
As outlined in the Google docs you can use Google Apps as a SAML 2.0 IdP. The IdP metadata includes a URL for SSO, but doesn't contain a SLO URL:
<?xml version="1.0" encoding="UTF-8" standalone="...