SSO authentication with pingfederate - single-sign-on

By using pingfederate, I am asked to implement an SSO authentication feature (SAML2.0 or OpenId type) in a local web application, my concern is that I am a beginner on the use of pingfederate.
Everything I've done so far is to have installed the pingfederate application and also the project in question then I tried to follow the documentation on the pingIdentity platform but that didn't help me much. So I come to look for solutions on the approaches that I have to do if someone could help me or guide me.
I tried to configure the connections between an IdP and pingfederate(as SP) and also the connection between pingfederate( as IdP) and my SP app but nothing works, maybe the configuration I did is not correct
what i want to do is to successfully implement this SSO (SAML2.0) authentication feature in my web application using pingfederate and I implore your help for the configuration steps that I have to do

Related

SSO authentication using pingfederate

By using pingfederate, I am asked to implement an SSO authentication feature (SAML2.0 or OpenId type) in a local web application, my concern is that I am a beginner on the use of pingfederate. Everything I've done so far is to have installed the pingfederate application and also the project in question then I tried to follow the documentation on the pingIdentity platform but that didn't help me much. So I come to look for solutions on the approaches that I have to do if someone could help me or guide me.
I tried to configure the connections between an IdP and pingfederate(as SP) and also the connection between pingfederate( as IdP) and my SP app but nothing works, maybe the configuration I did is not correct
what i want to do is to successfully implement this SSO (SAML2.0) authentication feature in my web application using pingfederate and I implore your help for the configuration steps that I have to do

SSO setup with shibboleth

I am new to this subject and was tasked with setting up an SSO environment
using shibboleth IDP. I downloaded the IDP software from the shibboleth website and tweaked the settings according to a few online guides. In the end I want to connect the IDP to a service now instance to work as the SP. I don't know why but the connection doesn't happen. Is there anything I'm missing that I should have for just a skeleton of the system to work? I skipped anything involving federation registration and encryption as this is not relevant for the time being. I don't know a lot about SSO systems and I don;t know if I just have a few settings wrong in the IDP or if I completely mis-understood how SSO's work.

Where to test IdP-Initiated SSO?

We've developed a SAML2 SP (supporting IdP-Initiated SSO, as per the user journey we want).
My question is, short of developing an IdP, how can we test it is working? Is there an IdP-Initiated SSO test harness out there? (I know of SSO Circle, but that is for SP-Initiated SSO).
You can use a trial account from Onelogin and configure a SAML Test Connector, or deploy your own IdP with simpleSAMLphp
You can test out IdP-Initiated SSO via this JS Bin: https://output.jsbin.com/nukiso
The code is quite long and wouldn't be appropriate to put directly into this post.
It works completely on the browser side and uses web crypto APIs for signing the assertion. It is probably a better idea to use a real IdP as this is more of a tool for learning how to make the SAML response/assertion. To prevent anyone from being able to log into your website without authentication, do not use the JS Bin IdP metadata on a public/production server.

Integrate Liferay with CAS and SAML

We have a requirement where user needs to login to portal with CAS (but SAML way). User can also login via login portlet of liferay.
We have few apps hosted on Intranet and few on Extranet. When user is in our office network, he should be able to login to all the apps via SSO. This includes apps which are hosted on extranet as well.
To achive this we want to use SAML with CAS.
By doing some research I understand that in this case CAS would be my IDP i.e. Identity provider and my apps on extranet would be SP i.e. service provider
Any idea how to proceed with it?
Any help is appreciated.
I have to do the same thing but using a LDAP too ...
I'm following this cookbook to achieve that, the second chapter talks about Authentication and Registration Process
I hope this would be helpful!!

How to secure a Rest web service with OpenAM as OAuth2 provider

I developed a Rest web service with Play! Framework. I aim to secure access to this WS. I'm discovering OAuth2 and it seems to be a good solution in my case. However, instead of using an external OAuth2 provider, I prefer to manage this part myself. So, I installed the last snapshot of OpenAM (12.0.0), which can do this. I have an instance of Active Directory on which the authentication should be based.
I have access to the documentation but I don't know how proceed. I would like to have some tracks.
Thanks for your help.