Questions tagged [saml]
SAML (Security Assertion Markup Language) is an open standard and XML-based markup language for exchanging authentication and authorization information between parties, known as service providers and identity providers.
104 questions
0
votes
0
answers
29
views
IBM Verify Identity Access 11 - SAML authentication on virtual junction
I'm struggling with IBM Verify Identity Access 11 configuration, with something that probably should be super straightforward.
I have Federation with MS Entra, which I think, based on the logs, seems ...
- 101
1
vote
1
answer
171
views
How to configure Citrix Single Sign On between two organizations Active Directory
We need a single sign-on solution between two companies using Citrix virtual desktops.
A user from company A wants to access resources in company B using Citrix Virtual Delivery Agent (VDA) without ...
- 179
1
vote
1
answer
139
views
How to configure keycloak to log in each user from a saml idp to only one user?
I have set up an identity provider that uses Samlv2 in my keycloak realm, but due to certain requirements I need to comply with, at the moment I would like to just discard all personal data sent in ...
- 11
0
votes
0
answers
117
views
Multi-Layered Logic Issues in SAML Claim
I am using Single Sign On in Zendesk for my end-user authentication and assigning several attributes. My IDP is Entra/Azure AD. One of the attributes I am passing along is the user's "...
0
votes
1
answer
55
views
Error around marshalling | Getting "Cannot assign field "nextSibling" because "<local6>" is null" while trying to marshall in OpenSaml library
This is the stacktrace which we are getting and after restarting the service it works fine:
Cannot assign field "nextSibling" because "<local6>" is null Cannot assign field &...
- 1
1
vote
1
answer
577
views
Microsoft Entra IDP signing assertion with expired certificate?
We have a web application, and some clients ask us to setup SSO for them. We use SAML and register as a Service Provider, with most of our clients using Entra/AzureAD as an Identity Provider. In order ...
- 195
2
votes
0
answers
153
views
After creating relying party trust in ADFS, how to validate configuration is correct using SAML tracer
I created a relying party trust in ADFS.
To test, I log into IDP, initiate link, select the relying party, enter credentials, then the application page will display.
How do I perform this validation ...
- 21
-1
votes
1
answer
110
views
Why is data exchanged between my two web apps using redirection with query parameters or auto-form-post cannot be trusted, even when using HTTPS?
Why is data exchanged between my two web applications using redirection with query parameters or auto-form-post cannot be trusted by each web application, even when using HTTPS?
Note:
I understand ...
- 3
1
vote
1
answer
1k
views
AD FS Access Control Policy to permit specific groups and require MFA
We use an on-premise AD FS server (currently on Windows Server 2019), with several "relying party" applications. This is connected to local Active Directory, which in turn syncs to an Azure ...
- 13.1k
1
vote
1
answer
1k
views
Azure SAML claim configuration shows emailaddress in the default template, but also shows "This claim is restricted"
We are created a claim in the Azure interface for SAML and by default the email address is included in the template when we first create it. Everything was working fine, however a rookie was messing ...
- 11
0
votes
1
answer
232
views
Unable to setup SAML with internal IdP (SP is checking for valid URL)
I've been reading through the various ways to configure an IdP/SP relationship and going back forth with a vendor I'm setting up our IdP to authenticate with. We've exchanged metadata and the ...
- 751
0
votes
1
answer
3k
views
ADFS Client Certificate Authentication
I have ADFS on my environment and it's currently authenticating via active directory perfectly fine. I'm trying to enable certificate authentication so they can authenticate with their smart cards. ...
- 1
2
votes
0
answers
441
views
Implement SSO between a custom app and Microsoft 365 with custom identity provider
I’m trying to implement SSO between a custom app and Microsoft 365 so that when the users hit any link to Teams o SharePoint Online in the Liferay app, ADFS doesn't ask for credentials. Context:
ADFS ...
1
vote
1
answer
84
views
How can I authenticate workstation on Azure ID when tenant uses SAML to Google?
I have some clients using Google SALM (https://support.google.com/a/answer/6363817?hl=en) on Microsoft O365, when a user need access to Office 365 tools and use your corporate e-mail account, ...
- 21
0
votes
1
answer
2k
views
Issues configuring SAML authentication in Apache Guacamole behind a HAProxy
I've deployed an Apache Guacamole server and trying to configure SSO using SAML with a Cloud IdaaS. HAproxy is in front of the Guacamole server, providing SSL offloading. Apache Guacamole was ...
- 249