Help

Alfresco-Shibboleth SSO configuration

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
kintu_barot
Senior Member
‎6 Feb 2019 9:34 AM

Alfresco-Shibboleth SSO configuration

I need to integrate Shibboleth with Alfresco Community 5.2 for SSO. I have installed Shibboleth SP(Service Provider) in my machine. Ideally Alfresco should redirect all the users to Idp (Identity Provider) URL from share/page, but I don't know what configurations I need to make for the same. I have already tried the External authentication and SSO | Alfresco Documentation 

Thanks in Advance.

Kintu

Regards,
Kintu
0 Kudos
2 Replies
idwright
Senior Member
‎7 Feb 2019 11:57 AM

Re: Alfresco-Shibboleth SSO configuration

It partly depends on how you want to configure your SSO - trying to put it as simply as possible, you can either authenticate before you get to share e.g. by configuring Apache, or you can modify share itself by changing the way that the filters are configured in web.xml by adding the appropriate jars/filters.

Either way you need request.getRemoteUser() to return the correct value.

(If you want log out as well then that's another level of complication)

If you look at GitHub - wrighting/alfresco-cas at ACE-5661 you can see how this is done for CAS SSO (this produces amps that modify the web.xml) - the principal should be the same if you replace the CAS client jars, and references in the web.xml with the shibboleth equivalent.

Good luck....

kintu_barot
Senior Member
‎7 Feb 2019 1:49 PM

Re: Alfresco-Shibboleth SSO configuration

Yes, I want to skip default login and directly want users to be authenticated at IDP.

I'll give it a try.

Thank You, Ian.

Regards,
Kintu
0 Kudos
Alfresco Content Services Forum

Ask for and offer help to other Alfresco Content Services Users and members of the Alfresco team.

Related links:

We use cookies on this site to enhance your user experience

By using this site, you are agreeing to allow us to collect and use cookies as outlined in Alfresco’s Cookie Statement and Terms of Use (and you have a legitimate interest in Alfresco and our products, authorizing us to contact you in such methods).   If you are not ok with these terms, please do not use this website.