Stack Overflow
Stack Overflow

Questions tagged [kentor-authservices]

Kentor.AuthServices is a .NET library for SAML2 protocol support, adding SAML2 Service Provider functionality to ASP.NET applications. The library has been renamed to Sustainsys.Saml2 and all future releases will be done under the new name.

The Sustainsys.Saml2 library (formerly named Kentor.AuthServices) is an LGPL open source library that adds SAML2 service provider functionality to .NET for various ASP.NET programming models (Http Module, Mvc, Owin, ASP.NET Core)

The project source and documentation is available in the GitHub repo.

An instance of the Stub Idp of the package (an Idp that can be used for testing) is available at https://stubidp.sustainsys.com.

108 questions
8
votes
2 answers

"The specified network password is not correct" on a certificate without a password, on live server only

I'm using kentor authservices in a SAML service provider project built in asp webforms. It works great on the development machine but when I put it on the production server (windows 2012 R2, IIS 8), the…
David
  • 235
  • 1
  • 6
  • 19
6
votes
0 answers

How can I use Postman to replicate SAML post made by Kentor test idP?

I am trying to use Postman to make a SAML 2 Post. This imitates what the post request from http://stubidp.kentor.se/ sends to our Service Provider for SAML authentication. However, the Postman Request always returns an error. Is there any…
silverArc
  • 938
  • 1
  • 11
  • 19
6
votes
1 answer

Using Kentor.AuthServices.StubIdp as production IDP

I'm trying to implement an IDP (SAML2) server inside my application. I don't want any of my partners to ask our customers to register on their side given the fact that my application has all the data needed. I'm not very familiar with the SAML2…
Gabriel Robert
  • 3,012
  • 2
  • 18
  • 36
6
votes
1 answer

IdP initiated login with ThinkTecture IdentityServer v3

Summary In SAML there is a concept of IdP-inititated login, meaning that the Identifying Party (IdP) can send an unsolicited token to the Relying Party (RP / the consuming application) and the user can be logged in without ever calling out to the…
flytzen
  • 7,348
  • 5
  • 38
  • 54
4
votes
1 answer

Kentor authservices and log4net

Is there a way to use log4net as Kentor Authservices Logger? Documentation states that "Connect an ILoggerAdapter to your SPOptions.Logger. If you are using the OWIN middleware this is done for you automatically and you can see the output in the…
dmitreyg
  • 2,615
  • 1
  • 19
  • 20
4
votes
0 answers

Use KentorAuthServices with IdentityServer4

I want to use IdentiyServer4 and add KentorAuthServices middleware for SAML authentication. From the IdentityServer4 documentation it suggests to add Microsoft.AspNetCore.Authentication.Cookies package and use the middleware with SignIn type as…
ravi punjwani
  • 496
  • 4
  • 12
4
votes
1 answer

Okta Kentor.AuthServices IdentityServer3 IDP-initiated SSO is triggering SP-initiated SSO - error or design?

Using IdentityServer3, Kentor.AuthServices 0.19 (with OWIN middleware) and a standard MVC 4 WebApi 2 app, we have followed instructions at https://github.com/KentorIT/authservices/blob/master/doc/IdentityServer3Okta.md and it appeared that we…
Jeremy Noble
  • 183
  • 1
  • 13
4
votes
2 answers

Multi-tenant Authentication using OWIN Pipeline

I have a multi-tenant application where each tenant can define their own MetaData URl, ClientId, Authority, etc for either WsFed or OpenIdConnect(Azure) or Shibboleth(Kentor). All the tenants are stored in DB table and registered in the OwinStartup…
Saravanan
  • 283
  • 2
  • 17
4
votes
1 answer

Implement Google as a identity provider(IDP) using Kentor Auth Service Library in MVC Application?

Hi i am using kentor auth services(The Kentor Authentication services is a library that adds SAML2P support to ASP.NET and IIS web sites, allowing the web site to act as a SAML2 Service Provider (SP) ).Right now i am using Google as a Identity…
Vetri Selvan
  • 235
  • 3
  • 14
4
votes
1 answer

Kentor Auth Services - Additional Claim

I'm evaluating the Kentor auth services (the OWIN version of it) to authenticate users using SAML. Now I would like to pass an additional claim to the service. Together with the samples there I was able to send the request to the service and debug…
tschuege
  • 761
  • 1
  • 8
  • 20
3
votes
2 answers

The signature verified correctly with the key contained in the signature, but that key is not trusted

I am trying to configure SAML2 IdP Salesforce as external provider in IdentityServer3. I am using SustainSys/Saml2 library. So for testing purpose I have downloaded SampleIdentityServer3. and configured SAML2 IdP like below private void…
LP13
  • 30,567
  • 53
  • 217
  • 400
3
votes
2 answers

ASP.Net Core - Turn SAML assertion into ClaimsPrincipal

There's a question about using SAML in ASP.Net Core, but I need additional help. The only answer there mentions Kentor.AuthServices, but I don't understand how to use it. Everything I find on this or other SAML libraries, the documentation, blog…
Sebastian Redl
  • 69,373
  • 8
  • 123
  • 157
3
votes
1 answer

Cause of infinite redirects loop between IDP and SP

I am troubleshooting the problem related to infinite redirects with Kentor Authservices on SP side and Shibboleth clone on IDP side. My question is what could be the possible causes of this and how can I intercept and log Kentor's decision to…
dmitreyg
  • 2,615
  • 1
  • 19
  • 20
3
votes
2 answers

Understanding Server Security Certificates

Am presently implementing Single-Sign-On within my MVC application using Kentor.AuthServices. The configuration contains two elements - < signingCertificate > and < serviceCertificates >, which appear to point to X.509 certificates on the local…
Mr Chris
  • 1,210
  • 2
  • 12
  • 18
3
votes
2 answers

The data protection operation was unsuccessful

I'm trying to get the sample MVC application from Kentor AuthServices deployed to Azure and using Okta as the IDP. I've jumped a few hurdles but have stumbled on the CryptographicException "The data protection operation was unsuccessful". I'm unsure…
Steve
  • 1,584
  • 2
  • 18
  • 32
1
2 3 4 5 6 7 8