/
FAQs: AC Cloud Azure IDP Server Configuration

FAQs: AC Cloud Azure IDP Server Configuration

Owned by Subrat Sandilya
Last updated: Nov 25, 2024 by Rajeev Rai
2 min read

Table of Contents

General Configuration

  1. What property needs to be updated to enable SAML SSO in Adeptia Connect?
    Change SAML_SSO_ENABLE to true in the value.yaml file.

  2. How do you update the base URL for SAML metadata generation?
    Modify the SAML_SSO_METADATA_GENERATOR_ENTITY_BASE_URL to the application's domain URL in value.yaml.

  3. What is the URL format for generating Adeptia Metadata XML?
    <protocol_name>://<ip_address>:<port_number>/saml2/service-provider-metadata/<registration_Id>.

  4. What variables must be configured to specify the SAML folder for metadata?
    Use the SAML_SSO_IDPS_CONFIGURATION_0_METADATA_LOCATION property in value.yaml with the format file:///shared/SAML/<client metadata file>.

  5. Where should the Azure Metadata XML file be stored?
    Create a "SAML" folder in the shared directory and save the Azure Metadata XML there.

Adeptia SAML Metadata

  1. How do you access the admin portal to generate metadata?
    Use the admin URL: https://<application domain name>/?user=admin.

  2. What information is included in the Adeptia Metadata XML?
    It contains the EntityID, Login URL, and Logout URL.

  3. How do you define the registration ID for metadata generation?
    Use the SAML_SSO_IDPS_CONFIGURATION_0_REGISTRATION_ID variable in the value.yaml file.

Azure SAML Configuration

  1. How do you create a new application in Azure for SAML SSO?
    Navigate to Microsoft Intra ID > Enterprise Application > Add New Application > Create Your Own Application.

  2. Where do you input the Adeptia SAML metadata details in Azure?
    In the Single Sign-On section, fill in the Entity ID, Reply URL (Login URL), and Logout URL.

  3. How do you add users to the Azure SAML application?
    Go to the Enterprise Application > Users section and assign roles to users.

  4. What is the final step after configuring Azure SAML?
    Download the federation metadata XML and share it with the Adeptia Infra team.

SAML Integration

  1. What roles should be created in Adeptia for Azure AD users?
    Match the custom roles from Azure AD within the Adeptia Application.

  2. How do you log in with SAML SSO in Adeptia after configuration?
    Enable SSO in Adeptia Connect 4 (AC4) and use the SAML account credentials.

Troubleshooting

  1. What should you do if metadata XML download fails?
    Verify the URL format and ensure proper configuration in the value.yaml file.

  2. How do you confirm Azure AD metadata is correctly applied?
    Ensure the file is uploaded to the shared SAML folder and referenced in the SAML_SSO_IDPS_CONFIGURATION_0_METADATA_LOCATION property.

Best Practices

  1. Why should roles in Adeptia match Azure AD roles?
    This ensures proper authentication and role-based access control for users.

  2. How do you secure the shared SAML folder?
    Use access controls to restrict unauthorized changes to the folder's contents.

Advanced Configuration

  1. What is the default registration ID in the value.yaml file?
    The default value is "default."

  2. Can multiple environments use different registration IDs?
    Yes, define separate SAML_SSO_IDPS_CONFIGURATION_0_REGISTRATION_ID for each environment.