2.16 SAML Authentication

saml is a protocol to share security credentials across one or more networked systems saml authentication integration can be used to integrate external identity providers with single connect single connect can be integrated with onelogin identity provider configurations on onelogin 1\ create an saml connector (idp w/attr) for single connect 2\ navigate to the “configuration” tab of the created single connect app 3\ fill the following parameters related to single connect audience singleconnecthost/samlcheck ex https //10 20 30 40/login ui/samlcheck recipient url singleconnecthost/samlrecipient ex https //10 20 30 40/login ui/samlrecipient acs (consumer) url validator set “ ” regular expression acs (consumer) url same as recipient ex https //10 20 30 40/login ui/samlrecipient single logout url url singleconnecthost/samllogout ex https //10 20 30 40/login ui/samllogout note e mail (saml nameid) should be the same as the single connect username configurations on single connect 1\ log in to the single connect web gui 2\ navigate to administration > system config man > saml config 3\ fill in the following parameters related to onelogin parameter name description enable saml it must be enabled to use saml authentication saml entity id issuer url of saml test connector at onelogin portal administrator>>managed tabs>>single connect saml connector>>sso tab saml url saml 2 0 endpoint (http) url of saml connector at onelogin portal administrator>>managed tabs>>single connect saml connector>>sso tab saml logout url slo endpoint (http ) url of saml connector at onelogin portal administrator>>managed tabs>>single connect saml connector>>sso tab saml remote url personal portal url saml x509 cert key x 509 certificate of saml connector at onelogin portal administrator>>managed tabs>>single connect saml connector>>sso tab