Zabbix containers are running on a Ubuntu 18.04 server, while zabbix front end service is provided on http://<ip>:8081 I configured SAML authentication
On SSO service provider, w.r.t. https://www.zabbix.com/documentation...x/install/okta, configurations are
On Zabbix
When select Sign in with Single Sign-On (SAML) on Zabbix frontend login page, it works redirecting to SSO service provider's SSO login page. After log in, a window pops up 'This is a non-secure form. This form will be sent in a way that is not secure. Are you sure you want to send it?'. I guess this is due to HTTP not HTTPs. After clicking on 'Send', it returns to Zabbix frontend login page with URL http://<ip>:8081/index_sso.php?acs
How to debug SAML authentication?
Thanks very much!
On SSO service provider, w.r.t. https://www.zabbix.com/documentation...x/install/okta, configurations are
- Single sign on URL: http://<ip>:8081/index_sso.php?acs
- Audience URL (SP Entity ID): http://<ip>:8081
- SAML Name ID: username
- SAML Name ID format: urn: oasis:names:tc:SAML:2.0:nameid-format: persistent
- Application username: username
- User attribute: username/username
On Zabbix
- idP entity ID: <SSO service provider URL>
- SSO service URL: <SSO service provider SSO service URL>
- Username attribute: username
- SP entity ID: http://<ip>:8081
- SP name ID format: urn: oasis:names:tc:SAML:2.0:nameid-format: persistent
When select Sign in with Single Sign-On (SAML) on Zabbix frontend login page, it works redirecting to SSO service provider's SSO login page. After log in, a window pops up 'This is a non-secure form. This form will be sent in a way that is not secure. Are you sure you want to send it?'. I guess this is due to HTTP not HTTPs. After clicking on 'Send', it returns to Zabbix frontend login page with URL http://<ip>:8081/index_sso.php?acs
How to debug SAML authentication?
Thanks very much!
Comment