Versions Compared

Version Old Version 13 New Version 14
Changes made by

Przemyslaw Kisicki

Przemyslaw Kisicki

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

1.1. Basic SAML Configuration

Identifier (Entity ID): https://pmxyz-test.integration-x.com/sso-saml/saml2/service-provider-metadata/azure
Reply URL (Assertion Consumer Service URL): https://pmxyz-test.integration-x.com/sso-saml/?RelayState=adpoint-java-ui
Sign-on URL: https://pmxyz-test.integration-x.com/sso-saml/?RelayState=adpoint-java-ui
Relay State: adpoint-java-ui

1.2. User Attributes & Claims

1.2.1. Required claim
Unique User Identifier (Name ID): user.userprincipalname

1.2.2. Additional claims
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress: user.mail
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname: user.givenname
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name: user.userprincipalname
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname: user.surname

1.2.3. Add a group claim
Choose: All groups
Source attribute: Group ID
A new additional claim should appear: http://schemas.microsoft.com/ws/2008/06/identity/claims/groups user.groups

...

2. Customer sets up the second app: ADPOINT Web Client - similar as above but:

Identifier (Entity ID): https://pmxyz-test.integration-x.com/sso-saml/saml2/service-provider-metadata/azure
Reply URL (Assertion Consumer Service URL): https://pm-test.integration-x.com/sso-saml2/?RelayState=adpoint-web-client
Sign-on URL: https://pm-test.integration-x.com/sso-saml2/?RelayState=adpoint-web-client
Relay State: adpoint-web-client

3. Customer sends to Integration X:

...