Versions Compared

Old Version 8

changes.mady.by.user Mari Fuglem

Saved on

compared with

New Version Current

changes.mady.by.user August Heltne

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

1. Display name

Choose a name for your identity provider. This is the user-facing name, so choose a name your users will recognize. This value can be changed later.

...

2. Select Redirect mode

Image RemovedSelect how the user will be redirected to the identity provider. You may configure more redirect modes after completing the setup.

...

3. Prepare IDP

In this step, we will configure Keycloak to work with Kantega SSO. For this, you will need to copy the Reply URL provided. We will use this when setting up Keycloak.

...

Select the correct realm (we are using the http://example.com domain ) and then Create client.

...

  • Set Client Signature Required to Off

  • Paste the Reply URL  into URL into the following fields:

    • Valid Redirect URIs.

    • Master SAML Processing URL.

...

https://<keycloak server>/auth/realms/<realm>/protocol/saml/descriptor

  • Substitute <keycloak server> with the DNS of your Keycloak server.

  • Substitute the realm identifier <realm> with your realm.

Alternatively, you can download the metadata file to disk and upload it in the KSSO wizard.

...

The Redirect URL is imported automatically from the metadata.

...

...

6. Certificate

This step shows the certificate used to validate the SAML messages.

...

...

7. Summary

Check that everything looks good and submit your setup (smile)

...