Is it possible to authenticate a user in SharePoint 2010 using a SAML Token provided by third-party?
Most of the examples of SSO configuration for SP2010 assume that you are going to use Active Directory as your user repository. I do not want to setup ADFS, since all of my users are actually out on a SAML compatible Jasig CAS server.
Any ideas?
Thanks for the help!
You would need to implement a custom authentication provider to make this work without ADFS. See http://www.rightpointconsulting.com/community/blogs/viewpoint/archive/2010/09/02/configuring-custom-providers-using-sharepoint-2010-claims-based-authentication.aspx
Related
I am developing a python backend using FastAPI (in docker) and I need to:
Implement an authentication service that utilizes SSO
Search the directory for users
use identity-provider/directory-server in development that is going to be replaced eventually by Microsoft Active Directory (I am developing a mac)
I searched a lot but I am still not sure. What I know now:
I can use any directory server as long as they support ldap
through ldap, I can search the directory
However, SSO does not seem to be a feature in ldap
SSO can be implemented using SAML2
Can you please guide me how to setup this. I am not sure how to integrate SAML2 and ldap to work together in my application.
Can you please guide me how to setup this. I am not sure how to integrate SAML2 and ldap to work together in my application.
You will need to set up an identity provider (or find an existing one) that:
has support for SAML2 and can act as a SAML2 identity provider.
has support for validating user credentials using LDAP and directory servers.
Your application, acting as a SAML2 SP, would send a SAML2 authentication to this IdP. The IdP then asks the user for credentials and validates them against the directory server, and would produce a SAML2 response back to your SP. Your SP would validate and parse the response, and all things permitting, would let the user through.
An example of such an IdP would be: https://github.com/apereo/cas or https://www.shibboleth.net/products/. Both OSS under Apache v2.
I need help in authorization using ADFS claims, I have done with ADFS configuration on my windows server 2012 R2.
i have no idea what to do next.
My requirement is :
I have 2 sites which share resources I need if the user sign-in using one site then if he/she goes to the second site then the user needs to enter the credentials again but I want to skip this step
You need to configure both applications as Relying Parties in ADFS.
Both applications need to have a client side stack supporting either WS-Fed (WIF) or SAML 2.0.
If you used ADFS 2016, you could also use OpenID Connect.
That gives you SSO across both applications.
I want to acheive SSO from liferay configured to LDAP. I have configured my liferay to AD and it is authenticating and working fine. I want to add SSO feature to my application. Once logged into windows ldap. Using my ldap login/password. My application should not ask for the user name password. Is there a way to acheive such a kind of SSO using liferay.
Any help is appreciated.
thanks
Lokesh
Please visit this link. Open SSO configuration is there in Liferay which you can use for SSO requirement.
--
Jaynil
how can I let non-domain users username/password login my sharepoint site (is on internet)? I am using Sharepoint 2010 foundation. can I authentic them via Active Directory?
If you want to continue to use Active Directory, you will need to give an AD account to these users. Otherwise, SharePoint also supports Forms Based Authentication and SAML token-based authentication.
Note that these authentication methods are not mutually exclusive. You can use any combination of authentication methods supported by the authentication mode of the Web Application (SAML token-based authentication is only supported when your Web Application is in Claims Based mode).
For more information, see Plan authentication methods.
You can use Form Base Authentication.
Reference: http://blog.morg.nl/2011/08/step-by-step-forms-based-authentication-fba-on-sharepoint-2010/
we have to create SharePoint extranet sites by using SharePoint foundation 2010 for clients.we have to use Claims based authentication.So which one is better FBA or SAML authentication.
please tell me which one is better what are the advantages and disadvantages are there for both.
I am not too familiar with SAML but from what I can tell, you would need an authentication provider to use SAML. FBA is based on the user providing a username and password which requires no infrastructure. It is always nicer for the end user if they don't have to bother with providing credentials, but what are the requirements that you have, and do you have the ability to use an authentication provider?