Forum Discussion
NimbostratusSalesforce SP, SSO, f5 as IDP, and AD
Hello I am trying to configure my salesforce app to use SSO with federation ID. It will be asking for loging info to an f5 firewall that is also connected to an Active Directory service. I am able to see the SAML2 response which is:
https://ctsc.force.com/caminoportal/login?so=00D1a000000ajTd" xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Version="2.0"> https://hsc-idp-camino.health.unm.edu/salesforce-camino-idp https://hsc-idp-camino.health.unm.edu/salesforce-camino-idp http://www.w3.org/2000/09/xmldsig"> http://www.w3.org/2000/09/xmldsig"> http://www.w3.org/2001/10/xml-exc-c14n" /> http://www.w3.org/2000/09/xmldsigrsa-sha1" /> http://www.w3.org/2000/09/xmldsigenveloped-signature" /> http://www.w3.org/2001/10/xml-exc-c14n"> http://www.w3.org/2001/10/xml-exc-c14n" PrefixList="xs" /> http://www.w3.org/2000/09/xmldsigsha1" /> ykJFK+A+Fa/QW9ogm5cQRQxwr90= YYYYYYYYYYYYYYYYYYYYYYYYYYY xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx jcabrerazuniga https://ctsc.force.com/caminoportal/login?so=00D1a000000ajTd" /> https://ctsc.force.com/caminoportal urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport
I do not understand why I can not see the attribute's data i.e. values for lasname, firstname, etc. Can you please assist me? I changed som alues for security purposes (Ex.: ZZZZZ, XXXX, YYYY etc)
2 Replies
Kristof_Van_DooWe had the same issue, attribute name should be the URN notation
JOSECCZ_261067We solved the problem by configuring the f5 to write down those attributes and to query them from our AD servers.
