IDP Initiated URL

By: Vipin Jain named 27 Jul 2017 at 4:58 a.m. CDT

5 Responses
Vipin Jain gravatar
Hello Team, What will be the IDP Initiated URL for all for applications which are integrated as part of the trust relationship. Thanks
Rhel72
closed

Answers

By Mohib Zico staff 27 Jul 2017 at 5:03 a.m. CDT

Copy
Mohib Zico gravatar
That's up to SP how they wanna call it. Generally it's something like ... `https://[hostname_of_gluu_server]/idp/profile/SAML2/Unsolicited/SSO?providerId=[ProviderID_of_SP]&target=[SP_target_link]` One thing to share... skip IDP-initiated SSO as much as possible; work is kinda big and there are situations when you need to write metadata for SP even.

By Vipin Jain named 27 Jul 2017 at 5:36 a.m. CDT

Copy
Vipin Jain gravatar
I tried it but its not working. [ProviderID_of_SP]&target=[SP_target_link] I am giving ProviderID as the Name of Trust Relationship. Replace or remove this logo Web Login Service - Unsupported Request The application you have accessed is not registered for use with this service.

By Mohib Zico staff 27 Jul 2017 at 5:48 a.m. CDT

Copy
Mohib Zico gravatar
>> Replace or remove this logo Web Login Service - Unsupported Request The application you have accessed is not registered for use with this service. Can you please search KB with this error? I think we provided a workaround on this ( not exactly sure in customer's private ticket or in community ticket ).

By Aliaksandr Samuseu staff 27 Jul 2017 at 8:40 a.m. CDT

Copy
Aliaksandr Samuseu gravatar
Hi, Vipin. >I am giving ProviderID as the Name of Trust Relationship. That can't be correct. You should use `entityid`, probably.

By Dan Doucet Account Admin 10 Sep 2017 at 8:43 a.m. CDT

Copy
Dan Doucet gravatar
Hi, I managed to get this to work but had to ensure that I used the value of the entityId of the SP for the providerID parameter. To determine the entity if you may have to look at the metadata file for the SP. in my instance I had generated the SP metadata so o just had to open the generated FileVault to determine the appropriate entityId. I didn't even bother with the target value and instead let the trust config determine the target. See https://wiki.shibboleth.net/confluence/display/IDP30/UnsolicitedSSOConfiguration for config details. Dan

Post an answer