HI,
Tried to setup SAML authentication against LemonLDAP::NG with no success. Does anyone have some screenshots especially what to enter in the X509 certificate path. I have copy-pasted the public key my SAML idp uses to sign responses but that doesn't seem to be the correct answer.
TIA
what to enter in the X509 certificate path. I have copy-pasted the public key my SAML idp uses to sign responses but that doesn't seem to be the correct answer.
It should.
Here is an example of some correct configuration
Note that in order to work, you have to define the SP on your IDP serveur, with XML description that you can get throught the button "get Metadata"
Hello @babynus,
I already filled the corresponding form like shown here after
. Also, I copy-pasted the projeqtor metadata url in lemonldap (as just cliquing the button didn't gave the same result), which then pulled the corresponding data and filled its internals as shown here
. But at login, projeqtor sometimes seems to redirect to itself like shown here
instead of the saml idp url, and when it connects to the correct url, it returns a message like the following
.
There is also another situation ( and the corresponding screenshot) that i could not reproduce now.
TIA.
Just try and remove the comment on the certificate.
The comment line is valid when key is stored in a file, here we have a single line string, so there must be only the key, not the hole content of the file.
NB : if you get the Metadata of your IDP, you dshould get the correct value for the certificate.
En poursuivant votre navigation, vous acceptez le dépôt de cookies tiers destinés au bon fonctionnement et à la sécurisation du site (gestion de session, reCaptcha) et à une analyse statistique anonymisée des accès sur notre site (Google Analytics). Si vous vous inscrivez, les informations que vous fournirez ne seront jamais divulguées à un tiers sous quelque forme que ce soit. En savoir plus
Cookies settings
×
Functional Cookies
Ce site utilise des cookies pour assurer son bon fonctionnement et ne peuvent pas être désactivés de nos systèmes. Nous ne les utilisons pas à des fins publicitaires. Si ces cookies sont bloqués, certaines parties du site ne pourront pas fonctionner.
Session
Please login to see yours activities!
Other cookies
Ce site web utilise un certain nombre de cookies pour gérer, par exemple, les sessions utilisateurs.