SSO not working with SAML2 and ADFS #6524

sonar98 · 2018-11-23T12:01:40Z

Because a standard setting in Onelogin SSO is not working when using SAML2 in combination with ADFS.
Users get a login screen from ADFS when opening SuiteCRM. Other applications using the same ADFS server are logged in automatically.

According to an issue at the github of onelogin this is a setting in de config of onelogin that defaults to the wrong value.
SAML-Toolkits/php-saml#62

It is a simple change in the settings.php
`\modules\Users\authentication\SAML2Authenticate\lib\onelogin\php-saml\lib\Saml2\

Original:
if (!isset($this->_security['requestedAuthnContext'])) {
$this->_security['requestedAuthnContext'] = true;
}

Working:
if (!isset($this->_security['requestedAuthnContext'])) {
$this->_security['requestedAuthnContext'] = false;
}
`

Dillon-Brown added Type: Bug Bugs within the core SuiteCRM codebase Status:Fix Proposed A issue that has a PR related to it that provides a possible resolution Priority:Important Issues & PRs that are important; broken functions, errors - there are workarounds labels Dec 3, 2018

jack7anderson7 added the PR:Community Contribution These are contribution made by the community label Dec 7, 2018

Dillon-Brown removed PR:Community Contribution These are contribution made by the community labels Dec 7, 2018

ebogaard mentioned this issue Jun 11, 2019

Update php-saml to fix security issues #7368

Closed

tsmgeek mentioned this issue Dec 23, 2020

SAML allow full custom onelogin config #9001

Open

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

SSO not working with SAML2 and ADFS #6524

SSO not working with SAML2 and ADFS #6524

sonar98 commented Nov 23, 2018

SSO not working with SAML2 and ADFS #6524

SSO not working with SAML2 and ADFS #6524

Comments

sonar98 commented Nov 23, 2018