All Questions
18
questions
0
votes
1
answer
1k
views
How to generate Identity Provider (IdP) SAML Response in node.js?
I have two very simple node.js applications: idp (Identity Provider) and sp (Service Provider). These apps don't have any specific business logic, I just want to create a very simple single sign-on (...
1
vote
1
answer
757
views
Configuring Multiple Identity Providers (IDPs) for SAML Authentication in Spring 5
I've successfully implemented SAML-based Single Sign-On (SSO) using Spring 5 with the guidance provided in the tutorial https://isd-soft.com/tech_blog/diving-sso-spring-saml-ssocircle/. The ...
0
votes
1
answer
1k
views
Keycloak may not support SAML 2.0 IdP initated SSO
For context, here is my scenario, Keycloak is the Identity provider for a particular service, let's call it Resurce1 where regular Keyclaok username and password login grants access to it.
Need to ...
1
vote
1
answer
2k
views
SAML Authentication Requested ( Invalid Signature Error)
I am creating signed SAML Request using below code and the certificates are cross checked to be same however getting invalid signature error on IDP , Please suggest
public XmlDocument SignXML(...
1
vote
0
answers
215
views
SSO Okta is sitting at the okta developer page after login . NOT returning to the ACS URL of the service provider
Two scenarios
scenario #1. Logged in to Okta developer portal independently + Logged out from Service provider(SP)
scenario #2. Logged out from Okta + Logged out from Service Provider
In scenario #1, ...
0
votes
1
answer
717
views
How add claims to SAML IDP metadata
I built the SSO integration project, I will be as IDP identity provider and our third party will be as SP services provider.
I used this code https://github.com/OTA-Insight/djangosaml2idp to prepare ...
0
votes
1
answer
459
views
How do I impersonate SAML/SSO from a computer?
I have a website that I need to access periodically. From the browser it works fine. The site gives me a cookie which expires in 15 minutes. If I go back to the server after an hour, it redirects me ...
2
votes
0
answers
241
views
SSO - Multiple IDP's
How to configure multiple IDP's? One application is tied to 2 IDP's at a time, Primary should be active and secondary should be in standby mode/passive, is this even possible?
Please provide some ...
0
votes
1
answer
3k
views
Assertion expired - Keycloak
I'm doing IDP initiated sign-on where Azure AD is my IDP and Keycloak is a broker. I get below error in Keycloak server console -
11:02:17,571 DEBUG [org.keycloak.saml.common] (default task-9)
org....
0
votes
1
answer
1k
views
How to setup a single SAML app for all the tenants of multi-tenant app(having different domain urls)?
App Architecture:
We have a multi-tenant setup where every tenant has its own URL.
Every tenant has its own schema and configurations.
Problem:
We need a single SAML app that could be integrated ...
2
votes
1
answer
642
views
Does SAML SLO (Single Logout) logout from all SP (Service Provider)?
Our javaspring application (sp) allows SSO integration for the clients. We have planned to introduce SLO (Single Logout) as part of the security audit requirement.
I have a doubt, if our application ...
0
votes
1
answer
4k
views
PowerShell cmdlets Get-AdfsProperties doesn't contain EnableIdpInitiatedSignonpage property
I'm creating ADFS configuration relying party for SAML ASPNET, but when I type Get-AdfsProperties cmdlets into PowerShell for enabling EnableIdpInitiatedSignonpage True, the output doesn't contain ...
1
vote
0
answers
780
views
IdP server over spring boot SSO
I'm trying to implement my own IdP on Spring boot. I followed the documentation of Spring security SAML to give me a clear idea but there are no good examples of this. The only part I found is
You ...
3
votes
1
answer
491
views
Unable to create SAML response from IDP
I have to create a Single Sign-On (SSO) for Salesforce. For authorization, I will be using user's mobile number with OTP. I have to only create a SAML response using Go once the OTP is verified.
I ...
0
votes
0
answers
6k
views
SP Metadata. WantAssertionsSigned false or true?
I am the SP. I am trying to help the IdP to send me (Unsolicited SSO) SAML assertions appropriately. But What happens is that SAML comes without signature.
In my logs, after callback phase initiates ...