Freshdesk SAML with CAS

[Keith Alston (Staff)]

Anyone gotten CAS working with Freshdesk? I get authenticated at CAS and forwarded to Freshdesk but SAML trace gives

the following:

"responseStatus": 401,

"responseStatusText": "HTTP/2.0 401 Unauthorized",

I guess the other side either can't read the data, or something is missing in the transaction.

Any Ideas?? We have this working in ADFS.

Keith Alston

Regent University

IT Department

kei...@regent.edu

757.352.4081

[Tom O'Neill]

Keith,

 

My guess would be that your attribute mapping that is coming through CAS doesn’t match the same format that ADFS was using.

I would review the SAML assertion contents and the attribute encoding.

 

If that is the problem you can either change the attribute encoding format in CAS or you can pass the current format along to Freshdesk to update their side.

Here is a link to documentation about configuring SAML 2.0 attribute release and formats:

https://apereo.github.io/cas/6.3.x/installation/Configuring-SAML2-Attribute-Release.html

 

Hope that helps!

 

Tom 

 

From: cas-...@apereo.org <cas-...@apereo.org> On Behalf Of Keith Alston (Staff)
Sent: Tuesday, February 2, 2021 5:41 PM
To: CAS Community <cas-...@apereo.org>
Subject: [EXT] [cas-user] Freshdesk SAML with CAS

 

CAUTION: This email originated from outside of SIG. Exercise caution when opening attachments or clicking links, especially from unknown senders.

[EXT-STAMP-ADDED]

--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+u...@apereo.org.
To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/BL0PR10MB29950424FCC43E3C14A637F0D9B59%40BL0PR10MB2995.namprd10.prod.outlook.com.