Apache web application(s) as Service Provider - ADFS 2.0 as IDP

Hi,

I have encountered an Enterprise environment with redundant ADFS 2.0 federation servers and Federation proxies. There is an two way trust to an supplier network (the trust will get decommissioned). In the supplier network there is an basic configuration of adfs 3.0 with the regarding WAP servers. Supplier network runs several type of applications. Oracle based apps, Linux based apps running running on Apache 2.x (LAMP) and Microsoft apps.

The question is now mainly focused on the LAMP applications

I have Googled a bit and found the following results:
Spring SAML could be used to make a LAMP application act as Service Provider (SAML 2.x). This is configured within the application.
Shibboleth is used to make Apache act as an service provider

What are the best practices to make Linux Apache applications Service Provider? Communicating with ADFS 2.0
Is there any by Microsoft recommended 3rd party software to use

Note: Security is a huge issue that need to be taken into consideration.

Thank you in advance for your time and effort.

Best regards,
Reza
LVL 1
RSayadiAsked:
Who is Participating?
 
RSayadiAuthor Commented:
Solution is to use a simpleSAMLphp or shibboleth kind of product for LAMP applications and add it to ADFS 3, where ADFS 3 can be a SP for ADFS 2 in this scenario. The Oracle OBIEE 9+ (weblogic has built in SAML authentication support and can act as an SP and/or IDP.

This question can be closed
0
 
RSayadiAuthor Commented:
scanario-01.jpg
0
 
gheistCommented:
In primitive means apache can support SSO via samba's winbindd.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.