Add new attachment

Only authorized users are allowed to upload new attachments.

List of attachments

Kind Attachment Name Size Version Date Modified Author Change note
png
saml1.png 177.8 kB 1 29-Dec-2020 05:25 Ben Spink
png
saml2.png 211.5 kB 1 29-Dec-2020 05:25 Ben Spink

This page (revision-23) was last changed on 25-May-2022 07:12 by krivacsz

This page was created on 29-Dec-2020 05:25 by Ben Spink

Only authorized users are allowed to rename pages.

Only authorized users are allowed to delete pages.

Difference between version and

At line 4 added 18 lines
!!1)\\
The top half controls the connection parameters to the SAML provider server.\\
We provide an example screenshot for an OKTA account. Both HTTP POST and redirect does are supported.\\
[attachments|saml1.png]\\
\\
!!2)\\
The lower half controls what to do with the resulting user that is validated once they are redirected back to your CrushFTP server. This mainly contains configuration items related to LDAP. An LDAP server is required for looking of role associations for the user that SAML validated.\\
[attachments|saml2.png]\\
\\
!!3)\\
The final item is using a Url like this to make CrushFTP redirect a user to the SAML provider.\\
{{{
http://domain.com/?u=SSO_SAML&p=redirect
}}}
This could be placed on your login page, or even use javascript to auto redirect the user to that URL.\\
\\
Be certain the Preferences, Misc tab has the remember invalid usernames configured to 0 seconds or your SAML login will get rejected since CrushFTP caches the username as being invalid and doesn't even ask the plugin.\\
Version Date Modified Size Author Changes ... Change note
23 25-May-2022 07:12 3.005 kB krivacsz to previous
22 25-May-2022 07:12 3.035 kB krivacsz to previous | to last
21 25-May-2022 07:11 3.004 kB krivacsz to previous | to last
« This page (revision-23) was last changed on 25-May-2022 07:12 by krivacsz
G’day (anonymous guest)
CrushFTP10 | What's New
JSPWiki v2.8.2