Versions Compared

Old Version 3

changes.mady.by.user Kevin Yeh

Saved on

compared with

New Version 4

changes.mady.by.user Kevin Yeh

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

cat SF-SSO.php SF-SSO-2.php SF-SSO-3.php > /var/simplesamlphp/metadata/saml20-idp-remote.php


This creates entries in the metadata array for each IdP.  The keys in this array are used in the next step

$metadata['https://drcloudehr-idd-qa-dev-ed.develop.my.salesforce.com'] = array (
  'entityid' => 'https://drcloudehr-idd-qa-dev-ed.develop.my.salesforce.com',
  'entityDescriptor' => 'PG1kOkVu....



Changes to /var/simplesamlphp/config/authsources.php

...

'sp1' => [
    'saml:SP',
  'entityID' => 'https://drcloudehr-idd-qa-dev-ed.develop.my.salesforce.com',

  'idp'      => 'https://drcloudehr-idd-qa-dev-ed.develop.my.salesforce.com',
 ],
'sp2' => [
    'saml:SP',
  'entityID' => 'https://okta.com/',   
  'idp'      => 'https://okta.com/',
],

The entityID and idp are keys to the metadata array defined in saml20-idp-remote.php file that was updated in the previous step.

The entityId and the idp entries are set to the same value to eliminate the step of choosing an IdP when logging in. 

Changes to /var/simplesamlphp/metadata/dc-idp-mapping.php

...