11-09-2022 11:15 PM
I am trying to configure SSO with Azure AD. Needed clarity on some of the parameters that need to configured in the groovy file. I am not using SP side certificate.
I am using this URL for the configuration - https://saviynt.freshdesk.com/support/solutions/articles/43000641546#ConfiguringSAML-BasedSingleSign...
Below are my queries :
1. Since I am not using SP side certificate are below configurations required? If not, what should be the values updated as - defaults or blank? By default there is a prefilled password
grails.plugin.springsecurity.saml.keyManager.passwords = [ tomcat: 'password' ]
grails.plugin.springsecurity.saml.keyManager.defaultKey = 'tomcat'
2. Below field is mandatory, need clarity on what is signingKey, is the Azure AD IDP certificate that it is referring to?
grails.plugin.springsecurity.saml.metadata.sp.defaults = [....
I am using only IDP side certificate so should the "signingKey" attribute be populated with the certificate file name of IDP certificate in the Keystore explorer. I am not using SP side certificate so "encryptionKey" should be uploaded as blank?
3. There is no alternate URL to bypass Saviynt if there are any issues. How to troubleshoot issue and access the Saviynt portal if the portal itself is not accessible if the SSO configuration fails ?
11-09-2022 11:23 PM
Hi @necoutinho ,
For your question 3) please refer to the forum post below: