I want to acheive SSO from liferay configured to LDAP. I have configured my liferay to AD and it is authenticating and working fine. I want to add SSO feature to my application. Once logged into windows ldap. Using my ldap login/password. My application should not ask for the user name password. Is there a way to acheive such a kind of SSO using liferay.
Any help is appreciated.
thanks
Lokesh
Please visit this link. Open SSO configuration is there in Liferay which you can use for SSO requirement.
--
Jaynil
Related
I am developing a python backend using FastAPI (in docker) and I need to:
Implement an authentication service that utilizes SSO
Search the directory for users
use identity-provider/directory-server in development that is going to be replaced eventually by Microsoft Active Directory (I am developing a mac)
I searched a lot but I am still not sure. What I know now:
I can use any directory server as long as they support ldap
through ldap, I can search the directory
However, SSO does not seem to be a feature in ldap
SSO can be implemented using SAML2
Can you please guide me how to setup this. I am not sure how to integrate SAML2 and ldap to work together in my application.
Can you please guide me how to setup this. I am not sure how to integrate SAML2 and ldap to work together in my application.
You will need to set up an identity provider (or find an existing one) that:
has support for SAML2 and can act as a SAML2 identity provider.
has support for validating user credentials using LDAP and directory servers.
Your application, acting as a SAML2 SP, would send a SAML2 authentication to this IdP. The IdP then asks the user for credentials and validates them against the directory server, and would produce a SAML2 response back to your SP. Your SP would validate and parse the response, and all things permitting, would let the user through.
An example of such an IdP would be: https://github.com/apereo/cas or https://www.shibboleth.net/products/. Both OSS under Apache v2.
Following scenario:
I have a web app running in the MS Azure cloud
The app provides a user logon with username and password
The new requirement is to provide the AD FS SSO for the web app, so that once a user has logged on the Windows machine, her AD credentials can be used to log on the web app.
Can anyone help with some background information and step-by-step instruction. Thank you.
Yes - you can do this by federating ADFS and Azure AD.
That provides SSO and lets the users authenticate on the intranet.
Do you have to use ADFS? If not, pass-through is a good alternative.
To connect the web app to ADFS, you could try to use the scripted setup for automated integration or use the manual setup to step-by-step.
For the details, you could refer to the docs.
Hope this can help you.
I've been developing an WebAPI based application with token based authentication implemented and Using angularJs 1.6 as front-end. Requirement is to provide SSO for office365 without navigating user to microsoft login page for consent when user in signed in to application using login page of dashboard. Currently I'm not able to find any way to do that. Kindly guide me in accomplishing that. In my dashboard I'll provide link for any microsoft service. Let's say OutLook. When the user clicks on that link it will open up in new tab. I've been able to accomplish that using SMART LINKS. But for now user need to authenticate again on microsoft's login page.
Kindly help me in accomplishing SSO for that.
how to use SSO in liferay portal if alfresco it is been integrated ?
Meanwhile i have to login in liferay portal and again login in alfresco portlet and alfresco it is been integrated in liferay portal ??
Image of Alfresco_Liferay
Alfresco in the Cloud has SAML integration that can use an SSO identity provider.
There is an enterprise SAML module for on-premise coming soon, or you can pay for consulting to get it earlier. Otherwise, perhaps you can do something with Alfresco External Authentication, and hook into an SSO solution that way.
See http://docs.alfresco.com/5.0/concepts/auth-intro.html
Is it possible to authenticate a user in SharePoint 2010 using a SAML Token provided by third-party?
Most of the examples of SSO configuration for SP2010 assume that you are going to use Active Directory as your user repository. I do not want to setup ADFS, since all of my users are actually out on a SAML compatible Jasig CAS server.
Any ideas?
Thanks for the help!
You would need to implement a custom authentication provider to make this work without ADFS. See http://www.rightpointconsulting.com/community/blogs/viewpoint/archive/2010/09/02/configuring-custom-providers-using-sharepoint-2010-claims-based-authentication.aspx