All Questions
20
questions
0
votes
1
answer
2k
views
Passing RelayState between PingFederate(IDP) OpenAM (SP) with Sp-initiated sso
I have successfully configured SAML SSO with OpenAM as SP and PingFederate as IDP with SP-Initiated SSO and using Redirect-Post binding. I am using kerberos adapter for implementing SSO.
However I ...
0
votes
1
answer
125
views
How to setup IDP from scratch using opensso library?
I am aware that Forgerock owns OpenAM which can be used to setup IDP/SP. However, we have had our system set up as an SP using opensso library. This was done quite a few years back and all of the ...
2
votes
1
answer
5k
views
OpenAM error 500 "Unable to do Single Sign On or Federation" when browser loads successURL
I just installed OpenAM 13.0.0, created an hosted IDP, and registered a remote SP.
Within the remote SP (a product called Questetra), I configured the entityID, login URL, logout URL, and certificate ...
0
votes
1
answer
114
views
Setting up Zendesk as a remote Service Provider in OpenAm
Am trying to register Zendesk as a remote service provider in OpenAm server.
I have a problem with finding a metadata file or a url for Zendesk. Is it even needed, if so how can I fill that field.
0
votes
1
answer
74
views
File not found error when creating fedlet
I'm trying to create a fedlet using openam 13.0.0, but i got an error.
First, it complains that forgerock-util-3.0.1.jar was not found.
I renamed the file forgerock-util-3.0.2.jar to forgerock-util-3....
0
votes
1
answer
45
views
OpenAM DesktopSSO support for non domain computers
I have configured OpenAM with the DesktopSSO module and everything is working fine with our SAML 2.0 app for domain computers. When they request the app, it redirects to OpenAM and they are ...
1
vote
1
answer
348
views
OpenAM - Is there a way to disable new organisation message while switching between realms?
In our OpenAM implementation, we have two realms with different relying parties configured in it. Both the realms authenticate against the same LDAP source.
We adopted this configuration to avoid ...
0
votes
1
answer
163
views
OpenAM not forwarding SAMLResponse
When I hit the SP initiated URL, it gets authenticated and gets redirected to my application page. But I don't get the SAMLResponse in the application's request object.
Whereas, SAMLResponse is ...
0
votes
2
answers
1k
views
How to form SP initiated URL for openam/saml2 with ADFS?
I tried various ways as explained in http://openam.forgerock.org/ & in stackoverflow, but getting different errors (Mentioned below). Any help on what I am missing is highly appreciated.
SP - ...
0
votes
1
answer
310
views
SAML SSO with Zendesk and openam
I am trying SSO between my application and zendesk. I am using openam for this purpose. Suppose app is deployed as app.myapp.com. And I want to have SSO feature with zendesk, whose URL could be ...
1
vote
2
answers
1k
views
sso saml with weblogic and openam
I'm trying to setup saml sso with openam and weblogic.
The reason why I want to use saml is that I have multiple application where I can't change the web.xml to use the j2ee agent.
My question is if ...
1
vote
2
answers
2k
views
How to query a list of users or a list of groups using SAML AttributeQuery?
I can use OpenAM to query list of users or list of groups by using its REST API:
/openam/json/users?_queryID=*
/openam/json/groups?_queryID=*
Is there an equivalent of the above using just SAML, ...
2
votes
2
answers
2k
views
Cross domain sso with OpenAM with SAML 2.0
I have a requirement for cross domain sso. So, i chose OpenAM with SAML. I have two applications hosted in different servers and host for which i need to implement SSO.
Now i read about OpenAM with ...
1
vote
3
answers
5k
views
Single Sign On Framework
I want to implement a SSO Framework. My requirement is thus:
Once a user log's into particular website and he clicks on an external link, he should not be asked to verify his credentials again.
EDIT:...
1
vote
1
answer
652
views
Running multiple Fedlet applications configured against different IDPs on Apache Tomcat
I have a Tomcat server running a fedlet application which is configured against a single IDP. All the configuration files are located in their default location (i.e. ~/fedlet) and it works just fine.
...