on 04-09-2018 2:10 PM
Hello,
After configuring SAML 2.0 authentication on our ERP system, I realized that I needed to create a new virtual host, under which my SAML-protected services and aliases would sit. I created a new domain name for this virtual host, saml2.host.domain.edu.
My problem now is that my ADFS admin requested that I re-create the service provider metadata XML file to reflect the new endpoints. I have not determined how to do this. In the browser-based SAML2 configuration screens, I do not find a way to indicate which endpoints to use.
Any help is much appreciated.
Best regards,
Jill
Rather than switch over to using a proxy or Web Dispatcher, I did the following:
I hope this solution might be of use to others.
Cheers,
Jill
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Jill,
To generate the metadata file with the correct endpoints, it's necessary to access the SAML2 configuration page using the desired host:port.
KBA 2326063 explains it when a proxy is used.
Regards,
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hello Geferson,
Thank you for replying to my question. I will try this solution using our Web Dispatcher system.
And I am curious... Given that I have created a Virtual Host and am using a new domain name for it, would you say that using a proxy/web dispatcher is the required way to handle it?
Best regards,
Jill
Hi Jill,
No. The idea of the KBA is just to illustrate how you can get the correct entry points for the Metadata file.
The idea is to access the SAML service with the correct URL (in your case the Virtual Host one) and then generate the Metadata file.
Cheers.
User | Count |
---|---|
89 | |
10 | |
10 | |
10 | |
7 | |
6 | |
6 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.