掲示板

RE: SAML support within Liferay?

11年前 に Aaron Weikle によって更新されました。

RE: SAML support within Liferay?

New Member 投稿: 2 参加年月日: 12/07/25 最新の投稿
I have EE and I am trying to integrate the SAML plugin following your instructions located here:

http://www.liferay.com/web/mika.koivisto/blog/-/blogs/12725251

But I can not get it to work and keep gettting a jks issue:
ERROR [pool-2-thread-1][KeyStoreManagerImpl:122] Unable to load keystore
java.io.IOException: Keystore was tampered with, or password was incorrect

I have went through double and tripled checked all paths, ID's and passwords and everything is working so I am not sure why I can not get the provider to work correctly.
thumbnail
11年前 に Mika Koivisto によって更新されました。

RE: SAML support within Liferay?

Liferay Legend 投稿: 1519 参加年月日: 06/08/07 最新の投稿
Have you tried with keytool that your keystore with the password you chose is functional? Does your keystore contain the key with then entity id of your IdP or SP if you are setting it up as SP?
11年前 に Aaron Weikle によって更新されました。

RE: SAML support within Liferay?

New Member 投稿: 2 参加年月日: 12/07/25 最新の投稿
I figured it out. Its very finicky in how you actually deploy the WAR file. If the application is running and you drop it in the deploy folder it doesn't work even if all the items are in the config file. Even after reboot it doesn't seem happy. The only way I got it to work was placing it in the deploy folder prior to startup of the application. Then it works.
thumbnail
11年前 に Mika Koivisto によって更新されました。

RE: SAML support within Liferay?

Liferay Legend 投稿: 1519 参加年月日: 06/08/07 最新の投稿
Yeah the current version requires it to be pre configured before deployment. We are adding in configuration UI in the next version so you can just deploy it and configure later.
9年前 に Kapil Burange によって更新されました。

RE: SAML support within Liferay?

New Member 投稿: 4 参加年月日: 14/09/04 最新の投稿
Hi Mika,

I am using liferay 6.2 and it have SAML plugin.
i have followed the link https://www.liferay.com/web/mika.koivisto/blog/-/blogs/getting-started-with-liferay-saml-2-0-identity-provider
and i am able to test SSO functionality with the salesforce for test@liferay.com
some how i am not able to test SSO functionality with other liferay user on lDAP imported user even i assign them administrator role....
i am new to liferay SAML.
Can you please help me out for finding out the issue.

my idp configuration are:

saml.enabled=true
saml.role=idp
saml.entity.id=liferaysamlidpdemo
saml.metadata.paths=\
http://localhost:8080/c/portal/saml/metadata,\
${liferay.home}/data/saml/salesforce-metadata.xml
saml.require.ssl=false
saml.sign.metadata=true
saml.keystore.path=${liferay.home}/data/keystore.jks
saml.keystore.password=liferay
saml.keystore.type=jks
saml.keystore.credential.password[liferaysamlidpdemo]=liferay
saml.idp.enabled=true
saml.idp.authn.request.signature.required=true
saml.idp.entity.id=liferaysamlidpdemo
saml.idp.metadata.attributes.enabled=true