You can deploy SAML in scenarios where multiple Service Providers process SAML requests forwarded by a reverse-proxy or a load balancer. In order to configure SAML for deployment behind load balancer or reverse-proxy, follow the steps given below:
- Go to the ...<ConnectPortalInstallFolder>/resources_config/saml.
- Open saml.properties file in text editor.
Set IP address or domain name of the Load Balancer as a value for the property SAML_SSO_METADATA_GENERATOR_ENTITY_BASE_URL in the following format:
<protocol_name>://<IP_address or domain_name>
Where,
<protocol_name> is the name of the protocol. For example, http or https.
<ip_address or domain_name> is the IP address or domain name of the load balancer.
For example, http://www.myserver.com
Set the values for the following reverse-proxy/load balancer properties in the saml.properties file.
Property NameExample value DescriptionSAML_SSO_CONTEXT_PROVIDER_LB_SCHEME http Name of the scheme (http or https). SAML_SSO_CONTEXT_PROVIDER_LB_SERVER_NAME www.myserver.com Name of the server. SAML_SSO_CONTEXT_PROVIDER_LB_SERVER_PORT 8080 Port number of the server. SAML_SSO_CONTEXT_PROVIDER_LB_INCLUDE_SERVER_PORT_IN_REQUEST_URL false Whether to include server port number in the URL or not. It must be false. SAML_SSO_CONTEXT_PROVIDER_LB_CONTEXT_PATH /adeptia Prefix of a URL path used to select the context(s) to which an incoming request is passed. A URL is in the format: http://hostname.com/contextPath/, where each of the path elements can be zero or more separated elements. It must be /adeptia. - Save the file.
...