Content Comparison

...

1.1. Basic SAML Configuration

Identifier (Entity ID): https://xyz-test.integration-x.com/sso-saml/saml2/service-provider-metadata/azure
Reply URL (Assertion Consumer Service URL): https://xyz-test.integration-x.com/sso-saml
Sign-on URL: https://xyz-test.integration-x.com/sso-saml

1.2. User Attributes & Claims

...

1.2.3. Add a group claim
Choose: All groups
Source attribute: Group ID
A new additional claim should appear: http://schemas.microsoft.com/ws/2008/06/identity/claims/groups user.groups

...

1.3. Assign users and roles.

2. Customer sets up the second app: ADPOINT Web Client - similar as above but:

Identifier (Entity ID): https://xyz-test.integration-x.com/sso-samlsaml2/saml2/service-provider-metadata/azure
Reply URL (Assertion Consumer Service URL): https://pmxyz-test.integration-x.com/sso-saml2/?RelayState=adpoint-web-client
Sign-on URL: https://pmxyz-test.integration-x.com/sso-saml2/?RelayState=adpoint-web-client

3. Customer sends to Integration X:

"App Federation Metadata URL" field value
Information about groups and roles

Log file

Tomcat/logs/sso-saml.log

...

Version	Old Version 14	New Version 15
Changes made by	Przemyslaw Kisicki	Przemyslaw Kisicki
Saved on	Nov 06, 2023	Nov 06, 2023

Versions Compared

Key

Log file