saml-auth-proxy icon indicating copy to clipboard operation
saml-auth-proxy copied to clipboard

Published 20 hours ago verified publisher icon itzg

azure adfs

Open gvajpeyi opened this issue 4 years ago • 1 comments

what env value is for below Login URL: https://login.microsoftonline.com/xyz/saml2 Azure AD Identifier: https://sts.windows.net/xyz

my env file is below

        - name: SAML_PROXY_BASE_URL
          value: https://{{ .Values.drop.url }}/
        - name: SAML_PROXY_BACKEND_URL
          value: http://localhost:9000
        - name: SAML_PROXY_IDP_METADATA_URL
          value: https://sts.lmn.com/FederationMetadata/2007-06/FederationMetadata.xml
        - name: SAML_PROXY_SP_CERT_PATH
          value: /ssl/tls.crt
        - name: SAML_PROXY_SP_KEY_PATH
          value: /ssl/tls.key
        - name: SAML_PROXY_NAME_ID_FORMAT
          value: persistent

gvajpeyi avatar Jun 08 '21 18:06 gvajpeyi

It looks like you'll point the metadata URL at https://nexus.microsoftonline-p.com/federationmetadata/saml20/federationmetadata.xml as described in https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-fed-saml-idp#azure-ad-saml-20-protocol-requirements

...however, I'm not totally sure since that metadata content doesn't specify a tenant specific login URL like what you've been provided.

itzg avatar Jun 08 '21 20:06 itzg