Ad Widget

Collapse

SAML SSO Not working with ADFS

Collapse
X
Collapse
 
  • Page of 1
  • Time
  • Show
Clear All
new posts
Previous template Next
  • srdev
    Junior Member
    • Mar 2025
    • 7
    #1

    SAML SSO Not working with ADFS

    Hi,

    We manage to make working SAML authentication between Zabbix 7.2 and our ADFS but the SSO doesn't work, we need to enter the crendential for each session

    JIT provisioning is working with matching group but no SSO

    Our Zabbix configuration

    Click image for larger version Name: image.png Views: 0 Size: 45.9 KB ID: 504384

    Is the a specific parameter to implement somewhere, maybe in zabbix.conf.php ?

    Thanks
    Attached Files
    Tags: None
    • cyber
      Senior Member
      Zabbix Certified SpecialistZabbix Certified Professional
      • Dec 2006
      • 4807
      #2
      we do not use JIT... but rest of it is pretty similar, except Username attribute is just "username"... You also seem to have all the rest there.. http and ldap configs ... I dont think it should all be used at once...

        Comment

        • srdev
          Junior Member
          • Mar 2025
          • 7
          #3
          Hi Cyber,

          Thanks, we just find the solution

          There is extra configuration to implement in /etc/zabbix/web/zabbix.conf.php
          $SSO['SETTINGS'] = [
          'security' => [
          'requestedAuthnContext' => [
          'urnasis:names:tc:SAML:2.0:ac:classes:Kerberos',
          ],
          'requestedAuthnContextComparison' => 'exact'
          ]
          ];

          Thanks

            Comment

            Previous template Next
            Working...