Dear Colleagues,
Has anyone tried to do authentication based on SAML groups?
Here are a few problems I'm facing:
1. It is not possible to set multiple Username attribute (for example: username,groups)
2. When checking the received attributes, zabbix takes only the first one, but does not check the entire list.
3. If I create a user for example Domain User and this attribute is the first in the list that my identity provider will return to me, then zabbix will be able to authorize me under Domain User, but of course it would be great to have an additional field that will pull the user name, but this is probably a separate request for updating the zabbix functionality...
Has anyone tried to do authentication based on SAML groups?
Here are a few problems I'm facing:
1. It is not possible to set multiple Username attribute (for example: username,groups)
2. When checking the received attributes, zabbix takes only the first one, but does not check the entire list.
3. If I create a user for example Domain User and this attribute is the first in the list that my identity provider will return to me, then zabbix will be able to authorize me under Domain User, but of course it would be great to have an additional field that will pull the user name, but this is probably a separate request for updating the zabbix functionality...