Shibboleth/SAML configuration

Is there any guidance how to set up SAML authentication with Shibboleth? I have tried to fill in the four fields in the Zammad SAML config UI as follows, but that does not work:

IDP SSO target URL: my.org - Informationen zum Thema Social networking.
IDP certificate: [content of /etc/shibboleth/sp-cert.pem]
IDP certificate fingerprint: [fingerprint of /etc/shibboleth/sp-cert.pem]
Name Identifier Format : urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress

Any pointer to how these fields are supposed to be filled out for a local shibd running on the zammad server would be much appreciated.

I’ve configured Zammad with SimpleSamlPHP and in a test env worked fine. You can omit the fingerprint if you paste the certificate.

IDP cert is not the SP one. You should paste the IDP certificate content.

This topic was automatically closed 41 days after the last reply. New replies are no longer allowed.