Collaborate Disseminate
I am facing an issue implementing an SP initiated workflow using Sisense as the SP and Apereo CAS version 5.1.2 as the Idp.
This is the SP metadata
<md:EntityDescriptor xmlns:md=”urn:oasis:names:tc:SAML:2.0:metadata” validUntil=”2021… Continue reading Issue with SAML2 implementation between Apereo CAS and Sisense [migrated]
I am receiving SOAP requests with SAML AuthnStatements whose SessionNotOnOrAfter timestamp is EXACTLY the same value as its AuthnInstant:
<saml:AuthnStatement
AuthnInstant="2020-04-22T21:11:41.453Z"
SessionNotOnOrAfter… Continue reading Should a SAML Assertion whose SessionNotOnOrAfter value is exactly the same value as its AuthnInstant be treated as having an invalid session?
Scenario: Consider a huge and diverse federation of Identity (IDPs) and Service (SPs) providers. Since trust level is generally low, Identity providers are reluctant to give out any kind of personal identifiable information (PII).
Introducing the release of Nexus Repository 3.22. Our product teams are excited to announce SAML/SSO authentication for Nexus Repository Pro. In addition to SAML/SSO, this release includes proxy support for Conan native format in both Nexus Reposi… Continue reading SAML/SSO Authentication and Conan in Nexus Repository 3.22
In the IdP’s SAML Metadata we can provide both a signing and encryption certificate:
<IDPSSODescriptor …
<md:KeyDescriptor use=”signing” …
<md:KeyDescriptor use=”encryption” …
I know that the signing certif… Continue reading SAML – Encryption Certificate in IdP Metadata
In my company, I have an existing website built with Laravel, and they want me to use SimpleSaml for SSO logins with an existing IDP. I am very new to PHP as I am a .NET developer and I would like to know how to do this (first steps for a … Continue reading PHP SimpleSAML SSO integration
I am needing some technical inputs to overcome a technical challenge with regards to an MS Azure app.
Goes like this…
We have manually configured a non-gallery app in MS Azure which allows a third party party platform to SSO (SAML bas… Continue reading How to create two apps in MS Azure with the same Entity IDs? [migrated]
I have an application that is a SAML SP, authenticating users via inbound SAML assertions from some other IdP.
If I want to require multi-factor auth, is it a common practice to add multi-factor auth on the SAML SP side, on top of validat… Continue reading SAML and Multi-factor auth
I have a question. The company I work for is about to publish a custom web app (hosted in a AWS) that authenticates through AzureAD.
That way, when someone goes to https://www.mywebap.com it is redirected to AzureAd and, if successfully a… Continue reading Security of a web app with AzureAD auth
I work on a software product that allows customers to use SAML or OAuth provisioning to their users. e.g to Azure AD.
Now non technical savvy users understandably presume that logging off from our software (the SP) would log them out. Be… Continue reading SSO SP Initiated Single Sign Out – User Experience