http://dev2.andreas.feide.no/simplesaml/saml2/idp/SSOService.php
http://dev2.andreas.feide.no/simplesaml/saml2/idp/initSLO.php?RelayState=/simplesaml/logout.php
br, Jake
If I understand your question correctly, you're asking what you need to
fill in in G-Suite for Single Sign On and Single Sign Out URL fields.
You find the values for your installation in your IdP metadata. This can
be found on your simpleSAMLphp installation, tab "Federation", under
"SAML 2.0 IdP Metadata", click "show metadata".
In this XML you can find the relevant URLs inside the
<md:SingleSignOnService> and <md:SingleLogoutService> tags.
Cheers,
Thijs
On 18 Oct 2017, at 20:42, Jake <jtyl...@gmail.com> wrote:Hi,Now I got it ! I thought I have to make those files by myself. Thanks a lot ! However, after successful authentication I'll be forwarded to AssertionConsumerService page where I got this error. Any tips !
<saml:Subject> <saml:NameID SPNameQualifier="google.com/a/garage.dyn.woima.fi" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" >_4584c1662cea63bc287439a15aeefec37d600c823c</saml:NameID> <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"> <saml:SubjectConfirmationData NotOnOrAfter="2017-10-19T08:52:24Z" Recipient="https://www.google.com/a/garage.dyn.woima.fi/acs" InResponseTo="mllmpaoegehhpaghlpaicfkfgnjckieafcoclkmk" /> </saml:SubjectConfirmation> </saml:Subject>
--
This is a mailing list for users of SimpleSAMLphp, not a support service. If you are willing to buy commercial support, please take a look here:
https://simplesamlphp.org/support
Before sending your question, make sure it is related to SimpleSAMLphp, and not your web server's configuration or any other third-party software. This mailing list cannot help with software that uses SimpleSAMLphp, only regarding SimpleSAMLphp itself.
Make sure to read the documentation:
https://simplesamlphp.org/docs/stable/
If you have an issue with SimpleSAMLphp that you cannot resolve and reading the documentation doesn't help, you are more than welcome to ask here for help. Subscribe to the list and send an email with your question. However, you will be expected to comply with some minimum, common sense standards in your questions. Please read this carefully:
http://catb.org/~esr/faqs/smart-questions.html
---
You received this message because you are subscribed to a topic in the Google Groups "SimpleSAMLphp" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/simplesamlphp/MD88HcYisWc/unsubscribe.
To unsubscribe from this group and all its topics, send an email to simplesamlphp+unsubscribe@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
<saml:Subject> <saml:NameID SPNameQualifier="google.com/a/garage.dyn.woima.fi
" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" >_2b260e3b7f792052d50b0ec16a09e135ba8031fb6f</saml:NameID>
On 19 Oct 2017, at 14:11, Jarkko Ylinen <jtyl...@gmail.com> wrote:Yes, I tried that one as well and the response is same. It looks like it doesn't matter what I have in that file...:(<saml:Subject> <saml:NameID SPNameQualifier="google.com/a/garage.dyn.woima.fi" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" >_2b260e3b7f792052d50b0ec16a09e135ba8031fb6f</saml:NameID>
<samlp:AuthnRequest xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" ID="ipepipeekeppemnadnmlcedbobghelmojpapnieb" Version="2.0" IssueInstant="2017-10-19T16:38:46Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="google.com" IsPassive="false" AssertionConsumerServiceURL="https://www.google.com/a/garage.dyn.woima.fi/acs" > <saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">google.com/a/garage.dyn.woima.fi</saml:Issuer> <samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified" /> </samlp:AuthnRequest>
<saml:Subject>
<saml:NameID SPNameQualifier="google.com/a/yourdomain.com"
Format="urn:oasis:names:tc:SAML:2.0:nameid-format:email">us...@yourdomain.com</saml:NameID>
<saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
<saml:SubjectConfirmationData NotOnOrAfter="2014-11-05T17:37:07Z"
Recipient="https://www.google.com/a/yourdomain.com/acs"
InResponseTo="midihfjkfkpcmbmfhjoehbokhbkeapbbinldpeen"
</saml:SubjectConfirmation>
<saml:NameID SPNameQualifier="google.com/a/garage.dyn.woima.fi" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" >_f3fb1da0039187b13968ef6404db577ff8c7fbc47b</saml:NameID>
br, Jake
<saml:NameID SPNameQualifier="google.com/a/garage.dyn.woima.fi" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" >_f3fb1da0039187b13968ef6404db577ff8c7fbc47b</saml:NameID>
-peter