ComponentSpace

Forums



New IDP partner / SSO - saml.conf use the redirect or post url


New IDP partner / SSO - saml.conf use the redirect or post url

Author
Message
boyd98
boyd98
New Member
New Member (45 reputation)New Member (45 reputation)New Member (45 reputation)New Member (45 reputation)New Member (45 reputation)New Member (45 reputation)New Member (45 reputation)New Member (45 reputation)New Member (45 reputation)

Group: Forum Members
Posts: 31, Visits: 164
Have about 11 clients using componentspace SAML
We are SP-initiated

This is the first metadata.xml file i can't import.  So I'm adding to the saml.config manually.

All my previous clients had the same value in their metadata .xml file for 
  <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="urlABC"/>
   <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="urlABC"/>

so my SAML has this:
SingleSignOnServiceUrl="urlABC"

but in this example i have 
  <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="urlABC"/>
   <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="urlXYZ"/>

Which one do I use in my saml.config
SingleSignOnServiceUrl="urlABC"
or
SingleSignOnServiceUrl="urlXYZ"

ComponentSpace
ComponentSpace
ComponentSpace Development
ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)

Group: Administrators
Posts: 3.2K, Visits: 11K
We default to using the "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" binding so you should use the "urlABC" URL as the SingleSignOnServiceUrl in your saml.config.

You can specify in saml.config to use the "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" binding but it's simpler to just go with the default.

Regards
ComponentSpace Development
GO


Similar Topics


Execution: 0.000. 1 query. Compression Enabled.
Login
Existing Account
Email Address:


Password:


Select a Forum....












Forums, Documentation & Knowledge Base - ComponentSpace


Search