SETUP GUIDE FOR ADFS AS IdP
STEP 1: In ADFS, click on Add Relying party Trust. Then click on Start.
STEP 2: In Select Data Source: Select Enter data about Relying party manually and click Next.
STEP 3: In Specify Display name: Enter Display name. Click Next. In Choose Profile: click on ADFS Profile. Then go Next.
STEP 4: In configure URL: Select Enable support for the SAML 2.0 WebSSO protocol, enter URL:
ACS (AssertionConsumerService) URL from Step1 of the plugin under Identity Provider Tab.
STEP 5: In Configure Identifiers: Enter the URL below as Relying party trust Identifier and click Add
SP-EntityID / Issuer from Step1 of the plugin under Identity Provider Tab.
STEP 6: In Configure Multi-factor Authentication: Select - I do not want multi factor, then, select - Permit all users to access this relying party. Click Next.
STEP 7: Check Open Claims and rules and click close. Click Add rule and then Select Send LDAP Attributes as Claims . Enter claim type as:
In Mapping of LDAP attributes to outgoing claim types:
- Select Claim Rule Name: Attributes
- Select Attribute Store: Active Directory
- Select LDAP Attribute: E-mail-Addresses
- Select Outgoing Claim Type: Name ID
STEP 8: In miniOrange SAML plugin, go to Service Provider tab and enter the following details:
|Identity provider Name:
||SAML Login URL
||IdP Entity ID or Issuer
||Paste the certificate value you copied from the Metadata file.