WordPress.org

Ready to get started?Download WordPress

Forums

SAML 2.0 Single Sign-On
[resolved] Success integration with Novell Access Manager (3 posts)

  1. simone.tuzzato@gmail.com
    Member
    Posted 1 year ago #

    Hi,
    i can report a successful (and fairly simple) integration with Novell Access Manager (NAM) IDP with SAML2 HTTP POST binding WEB-SSO SAML2 profile.

    Just found two minor issue:

    First:
    It is not possible in the interface to set the 'AuthnContextClassRef' parameter of the simplesaml PHP authentication core; the parameter is required as the authentication page / authentication method can be differentiated at the IDP side and so the SP must dictate the login method (in our case we autenticated with kerberos ticket and so set this to urn:oasis:names:tc:SAML:2.0:ac:classes:WP-Kerberos) [please note that the saml standard actually allow you to define custom AuthContextClass]

    Second:
    The group mapping does have support only for a single value, we changed the mask to accept a ; separated list of groups as a large number of groups needs to be mapped in the various WP internal group.

    Please, revise and evaluate this fix in order to improve this plugin.

    Regards,
    Simone

    http://wordpress.org/extend/plugins/saml-20-single-sign-on/

  2. ktbartholomew
    Member
    Plugin Author

    Posted 1 year ago #

    Simone,

    I'm glad to hear you got it working, especially using an IdP that I have never tested! I will evaluate your suggestions for inclusion in a future update to the plugin.

    Thanks,
    Keith

  3. ShrikantBhagwat
    Member
    Posted 2 months ago #

    I am looking for adding custom Authentication Class on Service Provider Side.
    How to do it

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic