Dear Philip and Dataverse Community,
Our current Test Dataverse Environment
Questions relating to SSO: SAML version 2.0 / OIDC
Please note: We have not yet determined which SSO protocol we will use, SAML 2.0 or OIDC. A comment or two about which is a better fit for Dataverse would be pretty helpful. Our IT Group supports both, so I am looking for a better fit for Dataverse and ease of implementation.
1a. The installation guide is somewhat confusing in this area, hence the reason for my question, Can I install OIDC /SAML 2.0 after I have configured, installed, and started to allow local authentication on Dataverse?
1b. Is it possible to install OIDC post-installation of Dataverse? If so, what steps should / would I have to follow to accomplish this task?
1c. Is it possible to install SAML 2.0 post-installation of Dataverse? If so, what steps should / would I have to follow to accomplish this task?
--
You received this message because you are subscribed to the Google Groups "Dataverse Users Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email to dataverse-commu...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/dataverse-community/273d9b92-654c-48e3-b3a5-40e06bea382fn%40googlegroups.com.
Hello Phil,
Thank you so very much for all your help.
I am leaning toward advising the IT Department to use SAML/Shibboleth because a GUI interface allows me to convert current accounts to shib post-installation.
The library is closely collaborating with the IT Department as such, and there are a few more questions I need to have answers for
.
The IT Department has what is called Onboarding, most of the questions I can answer, but there is are a few questions that I need help with.
Perhaps these questions make more sense to you.
1. OIDC. Enter Redirect URI, possibly jwks (Key Set) URL (if token encryption is to be used), Assuming we decided to go with OIDC.
2. SAML2: Metadata URL - path to SAML metadata XML file Assuming we decide to go with SAML
3. GW (Gateway. Specify IP: port and whether the site is running HTTP or HTTPS. We are running HTTPS
4. Claims? Have claims attributes been agreed upon? Are there mandatory claims that need to be filled out?
1 and 2 are most important questions as this information is required information for the onboarding process SSO.
As soon as we complete the process, I will look at the documentation and recommend possible text changes.
Many thanks for all your help.
Regards,
Richard
Special Advisor - Data Steward
Copenhagen University Library
To view this discussion on the web visit https://groups.google.com/d/msgid/dataverse-community/e4ce147a-0c59-4173-bf52-8b605df60f1dn%40googlegroups.com.