All Questions
29
questions
0
votes
0
answers
15
views
How to auto generate <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</md:NameIDFormat> in Shibboleth SSO login Metadata file
I have done all shibboleth related configuration at my server. After Shibboleth.sso/Status getting Ok Status and after Shibboleth.sso/Metadata, metadata file is downloading but
tag is not present in ...
1
vote
1
answer
597
views
Devise Saml Authenticatable Gem Error - AuthnRequest with AuthnContexts is not supported
I'm using devise_saml_authenticatable gem to make the Ruby on Rails application acts as a Service Provider(SP) to allow users to authenticate using SAML SSO.
The Idp is a Shibboleth solution which ...
3
votes
3
answers
4k
views
How to access Shibboleth SP Attributes in AngularJS Application
I am new to SSO as well as Shibboleth.
I have successfully implemented Shibboleth SP on an Apache Server. The user is getting authenticated against IDP whenever the user tries to access a protected ...
3
votes
1
answer
649
views
Shibboleth SSO and Spring SP: Unable to login due to "InResponseToField" mismatch error
In my production setup with 2 Service Providers and 2 IdP instances behind a load balancer, I'm seeing the following error in one of my SP's logs and I'm not sure why:
InResponseToField of the ...
3
votes
2
answers
2k
views
SuiteCRM metadata for SAML Authentication
I am trying to integrate SAML authentication for SuiteCRM 7.8.5 version. Have set up the Login URL, SLO URL and X509 Certificate in the Password Management page.I also have a Shibboleth IDP installed ...
5
votes
2
answers
1k
views
Saml SSO with mobile client
I have many questions regarding SAML and it's implementation through Shibboleth. I've done a fair amount of research and I would like to clarify a few things. I have a mobile application that ...
0
votes
1
answer
630
views
How to build a Spring MVC based application to connect with any service provider to do the SSO
We want to build one spring MVC based application which will support below use case:
User access the application URL to login into application.
Once the valid credentials are entered to login into ...
7
votes
1
answer
914
views
Google (G Suit) Identity provider with nginx SAML2
You might heard about shibboleth and their great solutions as for Identity Provider (https://shibboleth.net/products/identity-provider.html) so is for Service Provider (e.g. nginx https://github.com/...
1
vote
0
answers
881
views
XML Parse error on trying to get metadata from Federation
On trying to get Metadata file from a federation, I get the following error
XMLTooling.ParserPool : fatal error on line 213849, column 12547, message: unable to connect socket for URL 'http://...
3
votes
1
answer
3k
views
Cause of infinite redirects loop between IDP and SP
I am troubleshooting the problem related to infinite redirects with Kentor Authservices on SP side and Shibboleth clone on IDP side. My question is what could be the possible causes of this and how ...
0
votes
1
answer
3k
views
onelogin SSO shibboleth ACS config
I am trying to get Shibboleth SP to work with OneLogin [SAML Test Connector (IdP w/attr)] in my lab. I was able to get everything working with testshib IDP but when I change out my Metadata provider ...
0
votes
1
answer
127
views
Shibboleth Choosing Authentication Mechanism Based on SP
I am Using Shibboleth as IDP
For starters, how do i configure IDP to pick an authentication mechanism based on sp
like
SP1- Database Authentication
SP2- External Authentication
SP3- LDAP ...
5
votes
1
answer
1k
views
How do I set up a Shibboleth 3 identity provider?
Edit
So, I think I'm almost there. The only thing still missing is that Shibboleth IdP returns an encrypted, transient NameId, and I need for it to return the user name, unencrypted. If anyone can ...
3
votes
1
answer
10k
views
How to logout from shibboleth
Im using shibboleth services inorder to acheive the following
User tries to access the secured resource in https://sp.dev.myserver.com/secure/
redirects to WAYF
selects idp and redirects to IDP and ...
2
votes
1
answer
5k
views
Signature as parameter in the authentication request
I should get a GET authentication request with a certain set of parameters:
"https://domain_name_of_idp_here/idp/profile/SAML2/Redirect/SSO?" +
"SAMLRequest=" + SAMLRequest + "&SigAlg=" + ...