Did some blogging about SWAMID and our new MDQ. Enjoy 🔐 #mdq #federations #saml #trust

https://wiki.sunet.se/pages/viewpage.action?pageId=159449466

Are you interested in securing apps deployed to @wildflyas on #OpenShift with #SAML?

Check out this step by step guide ⬇️

https://wildfly-security.github.io/wildfly-elytron/blog/securing-wildfly-apps-saml-openshift/

SAML. Where do I start? Authentication could have been actually standarized and used similarly across providers, but it is not in reality. Why can't we just play nicely and support each others XML configs? Do I really need to use hours every time I meet a new provider?

https://en.wikipedia.org/wiki/Security_Assertion_Markup_Language

#saml #security #authentication

@firefish Is there a way with #Firefish to delegate authentication to an #SSO like Authentik (https://goauthentik.io/integrations/services/mastodon/) via #OIDC, #SAML, #LDAP or similar?

If there has ever been a perfect tutorial on how to implement authentik with #Nextcloud via #SSO & #SAML it is this blogpost from Jack Henschel:

https://blog.cubieserver.de/2022/complete-guide-to-nextcloud-saml-authentication-with-authentik/

A wonderful guide howto connect authentik with a Nextcloud-instance backed by the official integration doc at https://goauthentik.io/integrations/services/nextcloud/ 👌 !

We have 2023.

Why is it, that authentication and authorization is still a pain in the ass after all these years. And I think it’s getting worse.

#Oauth. Token here. #SAML there. #OpenID. OBO. Client Credentials. Auth Code. Device Code. Cert. #PKCE. Claims. Roles. ISS.

GTFO.

#security #secops #developing #dev #coding #auth #architecture #software #Cloud

@Mastodon want to enhance the onboarding process with single sign-on (SAML) and offer multiple accounts and group management?! Take a look at https://github.com/SURFnet/slurf

We use this solution for a Mastodon instance for Dutch students, researchers and staff from multiple institutions.

They can use their existing edu credentials to register and logon to Mastodon and focus on exploring and getting to know Mastodon and the Fediverse!

https:/social.edu.nl

#saml #singlesignon #exploremastodon

Introducing SAML Mock: a tool I've been building for testing #SAML implementations. Simulate SPs and IdPs effortlessly, and explore various SAML scenarios. Check it out at https://samlmock.dev #SSO

The docs are a bit sparse right now, but planning to correct that soon.

DotNetCore, Azure AD, and SAML

A wee tutorial on using these 3 technologies together

https://www.elliotclyde.nz/blog/dotnetcore-azure-ad-and-saml

#dotnet #dotnetcore #Azure #AzureAd #SAML #WebDevelopment

Somehow I've become the #SAML / #OpenID #OIDC / #SCIM Go-To guy at work.

🔥 Sortie de LemonLDAP::NG 2.16.1

➡️ https://projects.ow2.org/view/lemonldap-ng/lemonldap-ng-2-16-1-is-out/

#SSO #IAM #Perl #OW2 #lemonldap #lemonldapng #CAS #SAML #OpenIDConnect #FreeSoftware #OpenSource #LogicielLibre #AccessManager #Authentication #2FA #MFA #Security

Citrix. MFA. FAS. VDA. SAML. FSlogix.
If you are using all these together you have my sympathies. Poor design by Citrix looks like the maximum VDA session length is the maximum lifetime of a kerberos service ticket. 10 hours by default. After that time, you lose access to your FSlogix virtual disk.

Citrix know this and still took two weeks to confirm. #Citrix #MFA #SAML

https://github.com/casdoor/casdoor
#acce #access #ca #casdoor #github #iam #identity #management #oidc #open #platform #saml #sign #single #source #sso #ui #web

I saw that Amazon Connect now supports multiple SAML IdPs so I decided to test it out with a demo instance I had laying around. I was able to add JumpCloud in addition to my existing IAM IC configuration. Once I remembered to sign the assertion it worked perfectly.
https://aws.amazon.com/about-aws/whats-new/2023/03/amazon-connect-multiple-saml-2-0-identity-providers/
#AWS #SAML

Are you (planning on) integrating with #SAML in your #Clojure web service?

I made this library that turns a Pedestal web service into a SAML Service Provider: https://github.com/kuhumcst/pedestal-sp

It is actually pretty nice. The best part is that you don't have to use #Shibboleth at all.

In case you need to learn about #sso and #saml, here's a great explanation https://youtu.be/S9BpeOmuEz4

#SAML #Authentication #mastoadmin

Is anyone running Mastodon with SAML auth?
Mastodon seems to generate email addresses instead of using the one coming from the SAML provider.

I found various GitHub issues about it, but couldn't fix that problem.

Anyone having a valid config and willing to share?

#SAML #Authentication #mastoadmin

Ist anyone running Mastodon with SAML auth?
Mastodon seems to generate email addresses instead of using the one coming from the SAML provider.

I found various GitHub issues about it, but couldn't fix that problem.

Anyone having a valid config and willing to share?

#SAML #Authentication #mastoadmin

Ist anyone running Mastodon with SAML auth?
Mastodon seems to generate email addresses instead of using the one coming from the SAML provider.

I found various GitHub issues about it, but couldn't fix that problem.

Anyone having a valid config and willing to share?

Okta SAML Integration with AWS IAM Step 4: Granting Okta Users Access to AWS Roles: ACM.175 Creating a link between Okta Groups and AWS Okta Roles
~~~
by Teri Radichel | Mar 5. 2023
#cloudsecurity #aws #okta #iam #saml #idp #authentication #cybersecurity

https://medium.com/cloud-security/okta-saml-integration-with-aws-iam-step-4-granting-okta-users-access-to-aws-roles-ac7425b00852