Highest Voted 'saml' Questions - Server Fault Stack Exchange

1

vote

1 answer

ADFS - How to send sAMAccountName without domain

I'm using ADFS and I need to send the sAMAccountName. Currently using a "Transform an incoming claim" rule: Incoming claim type: Windows account name Outgoing claim type: Name ID Outgoing name ID format: Email (I know the format is actually wrong…

adfs saml

asked Sep 22 '20 at 09:24

error401

23
1
4

1

vote

2 answers

AzureAD IDP Initiated SAML always return nameid-format:persistent instead of nameid-format:emailAddress

I'm developing SSO using SAML and my IdP is Azure. I'm having problem with IDP Initiated flow. In SAML Response I always get this NameID: …

azure azure-active-directory single-sign-on saml

asked Mar 05 '20 at 04:14

truongnm

111
2

1

vote

1 answer

AD FS Not Authenticating SAML Requests

This morning, it was brought to our attention that Active Directory Federation Services has stopped performing SAML authentications for all SAML-based relying party trusts (about 8 of them). Office 365 logins going through the same ADFS server…

active-directory adfs saml

asked Feb 10 '20 at 21:05

SteadH

666
3
16
33

0

votes

1 answer

Is there an SSO mechanism supported as widely as LDAP?

LDAP is pretty amazing. It lets you set up a bunch of web services that all share a common user database (or rather, directory), so you can have a WordPress installation, a NextCloud, a MediaWiki etc, all of which let you log in with the same user…

ldap single-sign-on saml openid

asked Dec 22 '19 at 22:54

TaylanKammer

141
5

0

votes

2 answers

Google App Engine and SAML (Okta)

We're trying to setup a web app (django) in Google App Engine connected via SAML to our idP, Okta. It has to be done as a Custom Flexible App because of a binary requirement, making it basically a container deployment. Running it locally with…

nginx python django google-app-engine saml

asked Jul 11 '19 at 23:01

ModMed SysAdmin

73
1
5

0

votes

0 answers

Is G Suite as a SAML IdP a replacement for Okta?

G Suite supports acting as the identity provider to SAML-compatible service providers, in the same way as Okta does. However, you pay a premium for Okta whereas Google SAML is included in the G Suite bundle. When logging into SAML-authenticated…

authentication google single-sign-on saml

asked Feb 15 '19 at 19:05

James Brady

101

0

votes

1 answer

adfs giving error on authnrequest message

I have a SAML2 service provider and am trying to set up SSO with an ADFS identity provider. Currently my service provider is only working with Okta and OneLogin. When they initiate the authentication (send me a Response message), it succeeds, but…

adfs saml

asked Jan 29 '19 at 20:22

ysth

129
1
10

0

votes

2 answers

The SAML authentication request had a NameID Policy that could not be satisfied.

I'm using Issuance Policy as: Rule 1: Rule 2 (custom): c:[Type == "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier"] => issue(Type = "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier", Issuer = c.Issuer,…

windows-server-2016 adfs saml

asked Jul 10 '18 at 15:33

soccer7

185
2
13

0

votes

1 answer

Combination SAML and SSL Offloader causes error

Last night we tried to migrate a website to our new hosting provider. This new hosting provider uses a SSL offloader and this causes a problem with a website using SAML. After the migration when we tried to login using SAML we got the error below,…

adfs saml

asked Mar 13 '18 at 08:54

Jerry

1

0

votes

1 answer

Getting error "Oops, this link isn’t working…" in the browser when testing a SAML SSO configured in Azure AD as non-gallery application

I have configured a non-gallery application in order to set up SAML for one of our clients. To the best of our knowledge, all the settings are properly set - I'm just this is just a basic mistake or something that we are not taking into…

azure-active-directory saml

asked Mar 03 '18 at 16:11

Karell Ste-Marie

101
2

0

votes

1 answer

Getting junk while accessing federationMetadata.xml on Windows server 2012 R2

I have setup ADFS on windows server 2012R2 using self signed certificate. ADFS has been installed successfully. But when I try to access the federationMetadata.xml using https:///FederationMetadata/2007-06/FederationMetadata.xml; I get junk output…

windows-server-2012-r2 adfs single-sign-on saml

asked Feb 24 '18 at 13:41

rohitvk

11
1
3

0

votes

1 answer

How can I remove or delete an outgoing claim in AD FS?

My client's claims issuance rules for a relying trust don't include this claim, but it ends up in the outgoing claims and crashes Okta: http://schemas.microsoft.com/2012/01/devicecontext/claims/isregistereduser They have this as a Custom Rule on the…

adfs saml

asked Jan 22 '18 at 23:38

Alain O'Dea

645
3
12
27

0

votes

1 answer

Shibboleth IdP won't start with Jetty 9.3

I've been following this guide to install Shibboleth Identity Provider 3.3.2 on Jetty 9.3.22 (Ubuntu Server 16.04 with Oracle JDK 8u151). At https://my.server.ip/idp I get a 503 error (Service Unavailable). Jetty Home: /opt/jetty/jetty-distribution…

java jetty shibboleth saml

asked Dec 07 '17 at 01:11

Todd

198
2
3
9

0

votes

1 answer

How to configure AssertionConsumerServiceIndex processing in Okta?

In my Okta App I set up Single sign on URL and a couple of Requestable SSO URLs. The idea is that I send a SAML message with index, and Okta chooses one of requestable SSO urls to send a response. Right now it doesn't take an index into account and…

single-sign-on saml

asked Oct 16 '17 at 12:07

xuesheng

101
2

0

votes

1 answer

.NET Issue on ADFS SSO behind a Reverse Proxy

I have a .NET application that uses ADFS for SSO. It works when I test it on my local machine and test environment but it fails when deployed to the client environment. The client environment is like this: HTTPS Public IP:443 -> NAT Internal IP ->…

iis reverse-proxy single-sign-on adfs saml

asked Sep 21 '17 at 08:14

Yoshimori

1
1
2

Questions tagged [saml]