1 SP with multiple IDPs
11 views
Skip to first unread message
Kt
Feb 7, 2019, 1:49:18 AM2/7/19
to SimpleSAMLphp developers
What are you trying to do?
I have an SSO system setup using simplesamlphp-1.14.11, which at the moment serving as SP to 1 IDP. As show in the code below:
I am trying to find
a way to configure Multiple IDP with one SP. Right now we have 1 IDP
running with simplesamlSAMLPHP as SP. on a subdomain like http://sso.WEBSITE.com/
Do
need to setup another subdomain in order to add a new IDP and redeploy
the simplesamlphp there? Or I can add another IDP to the same SP?
What have you done?
=====authsources.php========
<?php
$config = array (
'admin' => array (
''
),
'default-sp' => array (
'saml:SP',
'entityID' => null,
'idp' => 'https://SOME_IDP_URL',
'discoURL' => null
)
);
$config = array (
'admin' => array (
''
),
'default-sp' => array (
'saml:SP',
'entityID' => null,
'idp' => 'https://SOME_IDP_URL',
'discoURL' => null
)
);
=========================
=====saml20-idp-remote.php=====
<?php
$metadata['https://SOME_IDP_URL'] = array (
'entityid' => 'https://SOME_IDP_URL',
'contacts' => array ( ),
'metadata-set' => 'saml20-idp-remote',
'SingleSignOnService' => array (),
'SingleLogoutService' => array (),
'ArtifactResolutionService' => array (),
'NameIDFormats' => array (),
'keys' => array (
0 => array (),
1 => array (),
),
);
$metadata['https://SOME_IDP_URL'] = array (
'entityid' => 'https://SOME_IDP_URL',
'contacts' => array ( ),
'metadata-set' => 'saml20-idp-remote',
'SingleSignOnService' => array (),
'SingleLogoutService' => array (),
'ArtifactResolutionService' => array (),
'NameIDFormats' => array (),
'keys' => array (
0 => array (),
1 => array (),
),
);
===========================
Any help on this would be much appreciated!
Dubravko Penezic
Feb 23, 2020, 2:41:55 PM2/23/20
to SimpleSAMLphp developers
Hi it is possible if IdP are not on same installation of SSP.
On other hand maybe that is issue in original code of SSP, which i discover few days ago.
Reply all
Reply to author
Forward
0 new messages