March 2020 - Satosa-dev - lists3.sunet.se

Federeated domaian in AAD authenticate with IDP pysaml2 sample.

by gus.duarte＠gmail.com

Hi all, I configured a federated domain in my Azure AD tennant to be authenticated against an IDP based on pysaml IDP sample. When I try logging in https://portal.azure.com with an user at myfedereteddoaim.com, following error happens: AADSTS50008: Unable to verify token signature. The signing key identifier does not match any valid registered keys. Any suggestions? Thanks in advance. Regards.

4 years, 1 month

2
3
0 0

SaToSa support for new SAML subject identifiers

by niels.vandijk＠surfnet.nl

Hi all, Is there an existing implementation (or planned) implementation of the new SAML subject identifiers [1] ? [1] https://docs.oasis-open.org/security/saml-subject-id-attr/v1.0/saml-subject… Many thanks, Niels -- Niels van Dijk Technical Product Manager Trust & Security Mob: +31 651347657 | Skype: cdr-80 | PGP Key ID: 0xDE7BB2F5 SURFnet BV | PO.Box 19035 | NL-3501 DA Utrecht | The Netherlands www.surfnet.nl www.openconext.org

4 years, 1 month

4
6
0 0

SAML 2.0 to SAML 1 GW

by gus.duarte＠gmail.com

We have an IDP which supports SAML1 and Proprietary rest API working since several years ago. Now we should integrate a new Service Providers through an ADFS (Active Directory Federation Service). Since ADFS supports only SAML2, we are facing to adapt our IDP to SAML2. Convert or modify our current IDP, isn't an option, so the solution must be by building an external module between the ADFS and IDP. Escenario 1) SP <---> ADFS <---- (SAML2)----> {GW} <---(SAML1)---> IDP. Escenario 2) SP <---> ADFS <---- (SAML2)----> {GW} <---(Custom REST API)---> IDP. My questions, Is the SATOSA suitable to work as GW in one of these escenarios ? What documentation can i start to read ? Thanks you very much !!

4 years, 1 month

2
4
0 0

2024

2023

2022

2021

2020

2019

2018

2017

Satosa-dev March 2020