Add Microsoft Azure as the Federated Authenticator in WSO2 Identity Server



Similar documents
Egnyte Single Sign-On (SSO) Installation for OneLogin

How to create a SP and a IDP which are visible across tenant space via Config files in IS

Configuration Guide - OneDesk to SalesForce Connector

Configuring ADFS 3.0 to Communicate with WhosOnLocation SAML

To set up Egnyte so employees can log in using SSO, follow the steps below to configure VMware Horizon and Egnyte to work with each other.

Egnyte Single Sign-On (SSO) Installation for Okta

Configuring Single Sign-On from the VMware Identity Manager Service to Office 365

Configuring Single Sign-on from the VMware Identity Manager Service to WebEx

Getting Started with AD/LDAP SSO

OneLogin Integration User Guide

HOTPin Integration Guide: Salesforce SSO with Active Directory Federated Services

INTEGRATION GUIDE. DIGIPASS Authentication for Salesforce using IDENTIKEY Federation Server

Configuring Single Sign-on from the VMware Identity Manager Service to ServiceNow

Single Sign On (SSO) Implementation Manual. For Connect 5 & MyConnect Sites

SalesForce SSO with Active Directory Federated Services (ADFS) v2.0 Authenticating Users Using SecurAccess Server by SecurEnvoy

Egnyte Single Sign-On (SSO) Configuration for Active Directory Federation Services (ADFS)

Copyright Pivotal Software Inc, of 10

Zendesk SSO with Cloud Secure using MobileIron MDM Server and Okta

ADFS Integration Guidelines

DocuSign Single Sign On Implementation Guide Published: March 17, 2016

Connected Data. Connected Data requirements for SSO

How To Use Saml 2.0 Single Sign On With Qualysguard

HP Software as a Service

SAML Single-Sign-On (SSO)

Using SAML for Single Sign-On in the SOA Software Platform

Administering Jive Mobile Apps

CA Nimsoft Service Desk

Building Secure Applications. James Tedrick

SSO Plugin. Case study: Integrating with Ping Federate. J System Solutions. Version 4.0

Fairsail. Implementer. Single Sign-On with Fairsail and Microsoft Active Directory Federation Services 2.0. Version 1.92 FS-SSO-XXX-IG R001.

Integration Overview. Web Services and Single Sign On

AVG Business Secure Sign On Active Directory Quick Start Guide

Configuring SuccessFactors

Security Assertion Markup Language (SAML) Site Manager Setup

This manual will illustrate how to integrate your WordPress Blog or website with the Docebo Learning Management System.

OpenLogin: PTA, SAML, and OAuth/OpenID

This section includes troubleshooting topics about single sign-on (SSO) issues.

PingFederate. Salesforce Connector. Quick Connection Guide. Version 4.1

Configuring EPM System for SAML2-based Federation Services SSO

SAML SSO Configuration

An overview of configuring WebEx for single sign-on. To configure the WebEx application for single-sign on from the cloud service (an overview)

Google Apps SSO to Office 365 Integration

Cloud Authentication. Getting Started Guide. Version

Flexible Identity Federation

Google Apps SSO to Office 365 Integration

INTEGRATION GUIDE. DIGIPASS Authentication for Google Apps using IDENTIKEY Federation Server

Configuring Single Sign-on from the VMware Identity Manager Service to AirWatch Applications

Defender Token Deployment System Quick Start Guide

Authentication Methods

Only LDAP-synchronized users can access SAML SSO-enabled web applications. Local end users and applications users cannot access them.

USING FEDERATED AUTHENTICATION WITH M-FILES

Configuring. SuccessFactors. Chapter 67

HP Software as a Service. Federated SSO Guide

Getting Started with Clearlogin A Guide for Administrators V1.01

INUVIKA OPEN VIRTUAL DESKTOP ENTERPRISE

Samsung KNOX EMM Authentication Services. SDK Quick Start Guide

Flexible Identity Federation

Configuring Salesforce

Configuring user provisioning for Amazon Web Services (Amazon Specific)

Agenda. How to configure

Microsoft Office 365 Using SAML Integration Guide

How to configure the TopCloudXL WHMCS plugin (version 2+) Update: Version: 2.2

NAS 206 Using NAS with Windows Active Directory

Social Application Guide

An overview of configuring WebEx for single sign-on. To configure the WebEx application for single-sign on from the cloud service (an overview)

Configuring. Moodle. Chapter 82

Configuring. SugarCRM. Chapter 121

TIB 2.0 Administration Functions Overview

Integration Guide. SafeNet Authentication Service. Using SAS as an Identity Provider for Drupal

Configuring SAML2 for Single Sign On to Smartsheet (Enterprise Only)

Advanced Configuration Administration Guide

Tenrox. Single Sign-On (SSO) Setup Guide. January, Tenrox. All rights reserved.

Step-by-Step guide for SSO from MS Sharepoint 2010 to SAP EP 7.0x

Integration Guide. SafeNet Authentication Service. Using SAS as an Identity Provider for Salesforce

Salesforce Opportunities Portlet Documentation v2

SQL Server 2008 R2 Express Edition Installation Guide

Perceptive Experience Single Sign-On Solutions

NAS 221 Remote Access Using Cloud Connect TM

INTEGRATION GUIDE. IDENTIKEY Federation Server for Juniper SSL-VPN

Configuring Parature Self-Service Portal

PingFederate. Windows Live Cloud Identity Connector. User Guide. Version 1.0

Configuring Single Sign-on from the VMware Identity Manager Service to Dropbox

User Management Tool 1.5

WHMCS LUXCLOUD MODULE

SAP Cloud Identity Service Document Version: SAP Cloud Identity Service

On-premise and Online connection with Provider Hosted APP (Part 1)

Adding Single Sign-On to CloudPassage Halo

This chapter describes how to use the Junos Pulse Secure Access Service in a SAML single sign-on deployment. It includes the following sections:

Configuring on-premise Sharepoint server SSO

Office365Mon Developer API

How To Connect Your Event To PayPal

Meeting Rooms User Manual

Agenda. Federation using ADFS and Extensibility options. Office 365 Identity overview. Federation and Synchronization

For details about using automatic user provisioning with Salesforce, see Configuring user provisioning for Salesforce.

SP-initiated SSO for Smartsheet is automatically enabled when the SAML feature is activated.

Publish Cisco VXC Manager GUI as Microsoft RDS Remote App

VMware Identity Manager Integration with Active Directory Federation Services 2.0

Zendesk Integration Guide

SAP NetWeaver Fiori. For more information, see "Creating and enabling a trusted provider for Centrify" on page

IIS, FTP Server and Windows

Transcription:

Add Microsoft Azure as the Federated Authenticator in WSO2 Identity Server This blog will explain how to use Microsoft Azure as a Federated Authenticator for WSO2 Identity Server 5.0.0. In this example I have created a tenant and configure Travelocity example for SSO. Then I used Azure active directory as an external identity provider. Below steps will explain the flow of the scenario. 1. Create Azure active directory web application. Login to Management Console of Windows Azure. https://manage.windowsazure.com/azonline.onmicrosoft.com#workspaces/all/dashboard Go to All Items and select "New"

Create new active directory by selecting custom create. Fill all the details as required

Select "Add an application my organization is developing". Give a name for the web application.

Go to Active directory that is created and select "Application", then select created web App and select "Configure" to do the configuration.

After your application is created, see its properties. Here is the client id. Save it somewhere. Client Secret needs to be taken at the first time you create the app - this is only visible one time, and it is just after saving the application. Save it somewhere before reload the page. This is redirect URL to IS.

Add Windows Azure Service Management API and make it Delegated Permissions: 1. Once you done all the configurations select "View Endpoints" and get OAUTH 2.0 Token Endpoint and OAUTH 2.0 Authorization Endpoint. 2. Configure WSO2 Identity Server. 2.1. Prerequisites to set up the application. Download IS 5.0.0 pack from http://wso2.com/products/identity-server/ Log in to the Identity Server using admin credentials. I used "Travelocity" as my application in this scenario. (Follow the documentation at https://docs.wso2.com/display/is500/configuring+single+sign- On+with+SAML+2.0 for the Travelocity setup.) Host your application in an application container. ( ex: in WSO2 AS or Tomcat )

2.2. Registering Windows Azure as an Identity Provider (IDP) Log in to the Identity Server using admin credentials. Click on Add under the Identity Providers in the Main tab. Fill in the details in the Basic Information section. o Identity Provider Name is sufficient for this setup. Click on the down arrow of Federated Authenticators and do the configuration under OAuth2/OpenID Connect Configuration. Fill in the configuration details as shown below using the values taken from Azure AD. Do the Claim Configuration as shown below. Once you are done, click on the Register button.

2.3. Registering Webapp as a Service Provider (SP) Log in to the Identity Server using admin credentials where you registered Windows Azure as an IDP. Click on Add under the Service Providers in the Main tab. Fill in the details in the Basic Information section. o Service Provider Name is sufficient for this setup. o Click on Register button. Click on the down arrow of Inbound Authentication Configuration followed by the down arrow of SAML2 Web SSO Configuration. Click on Configure link. Fill in the fields with the information from your webapp and click on Register button. o Issuer: Make sure you add the same issuer that you have set in your application. (Ex: travelocity.com) o o Assertion Consumer Url: Url of the application where you need IS to get redirected once authentication is done. (Ex: http://localhost:8080/travelocity.com/home.jsp) Tick on the following option. Use fully qualified username in the NameID Enable Response Signing Enable Assertion Signing Enable Single Logout Enable Attribute Profile

Click on the down arrow of Local & Outbound Authentication Configuration. Select the Advanced Configuration radio button under Authentication Type. Click on the link Add Authentication Step. Select basic in step 1 from the drop down under Local Authenticators and click on Add Authenticator link. Click on the link Add Authentication Step to add another step. Go to step 2 and select Windows Azure IDP that you configured in the earlier from the drop down which is under Federated Authenticators. Do the claim configuration as shown below. Then click on the Update button and again click on the next Update button.

3. Test the application. Go to travelocity page. http://localhost:8080/travelocity.com/home.jsp Select "Click here to login with SAML from Identity Server". This will direct to Identity Server Login page witch can select Azure as Federated Authenticator.

Once you select other login option it will direct to Microsoft login page and once you provide the Credentials it will redirect to Travelocity home page. Hope this document will supportive. Thank You.

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information