Demonstration of AEM and SAML integration

Hae
Experience Manager Käyttöopas

Tällä sivulla

Koskee seuraavia: Experience Manager

Goal

To provide simple ready to use single sign-on experience with AEM SAML support.

Setup

Get started with three simple steps:

  1. SSOCircle (http://www.ssocircle.com/en/) is a free public identity provider. Register and activate the account in SSOCircle.
  2. Configure SAML in AEM to communicate properly with idp(SSOCircle) by installing the demo package. The package content & configuration mapping covered under section "Additional Mapping Details."
  3. This step is required only if you want to test against your own domain rather than localhost or if AEM running is port other than default one.
    1. Create/update AEM Metadata with IDP provider.  (Log in to SSOCircle, then choose Manage Metadata > Add new Service Provider.) 
      1. Make sure that the Entity ID is unique; change the value of entityID in the following XML to a unique value.
      2. Update the AssertionConsumerService location to valid URL for saml consumption in the following XML.
      3. Finally, update the serviceProviderEntityId to the same value of entityID (Step i) at  http://<host>:<port>/system/console/configMgr/com.adobe.granite.auth.saml.SamlAuthenticationHandler
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" entityID="http://localhost:4502/">
  <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
  		<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp.ssocircle.com/sso/UI/Logout" />
  		<md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</md:NameIDFormat>
        <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="http://localhost:4502/saml_login" index="1"/>
  </md:SPSSODescriptor>
</md:EntityDescriptor>

Additional mapping details

Metadata of SSOCircle available at http://idp.ssocircle.com/.

Huomautus:

Download

AEM SAML Config Package

Lisensoitu Creative Commons Attribution-Noncommercial-Share Alike 3.0 Unported License -lisenssin mukaan.  Creative Commons -lisenssien ehdot eivät koske Twitter™- ja Facebook-viestejä.

Lakisääteiset ilmoitukset   |   Online-tietosuojakäytäntö

Valitse alue

Aluevalinta vaikuttaa Adobe.com-sivuston kieleen ja/tai sisältöön.

Americas
Brasil
Canada - English
Canada - Français
Latinoamérica
México
United States
Europe, Middle East and Africa
Africa - English
België
Belgique
Belgium - English
Česká republika
Cyprus - English
Danmark
Deutschland
Eesti
España
France
Greece - English
Ireland
Israel - English
Italia
Latvija
Lietuva
Luxembourg - Deutsch
Luxembourg - English
Luxembourg - Français
Magyarország
Malta - English
Middle East and North Africa - English
Nederland
Norge
Österreich
Polska
Portugal
România
Schweiz
Slovenija
Slovensko
Suisse
Suomi
Sverige
Svizzera
Türkiye
United Kingdom
България
Россия
Україна
الشرق الأوسط وشمال أفريقيا - اللغة العربية
ישראל - עברית
Asia - Pacific
Australia
Hong Kong S.A.R. of China
India - English
New Zealand
Southeast Asia (Includes Indonesia, Malaysia, Philippines, Singapore, Thailand, and Vietnam) - English
中国
中國香港特別行政區
台灣地區
日本
한국
Commonwealth of Independent States
Includes Armenia, Azerbaijan, Belarus, Georgia, Kazakhstan, Kyrgyzstan, Moldova, Tajikistan, Turkmenistan, Ukraine, Uzbekistan