Older version3.2 Authenticators SAMLSAMLServiceProviderAuthN

SAMLServiceProviderAuthN

Used when internal applications should be a part of a SAML federation.

Properties

Name Description Default value Mandatory
sp The entity ID of the Service provider. Must be same value as entityID. This value maps to a SAML SERVICE PROVIDER configured. N/A Yes
targetIDP The entity ID of the trusted IDP N/A Yes
acsUrl Location of where asserions should be sent N/A Yes
acsURL The URL to receive the assertion. Should reference to same authenticator '/authenticate/authenticator_alias'. N/A Yes
entityID The entity ID of the Service provider. Must be same value as sp. This value maps to a SAML SERVICE PROVIDER configured. N/A Yes
addsignature Sign the authentication request (true/false). true No
pipeID Id of the pipe used when consuming an incoming assertion N/A Yes
successURL Where to redirect the browser after a successfull authentication N/A Yes

Example Configuration

{
    "id": "samlsp",
    "alias": "samlsp",
    "name": "SAMLServiceProviderAuthN",
    "displayName": "External IdP",
    "configuration": {
        "successURL": "/otpadmin/",
        "sp": "sp.phenixid.se",
        "pipeID": "assertionConsumer",
        "targetIDP": "https://idp.testshib.org/idp/shibboleth",
        "acsUrl": "http://support.phenixid.se:8080/authenticate/samlsp",
        "entityID": "sp.phenixid.se"
    }
}

Requirements

A SAML Service Provider entity defined under Advanced->SAML Service Provider.