Solved

Apache web application(s) as Service Provider - ADFS 2.0 as IDP

Posted on 2014-10-16
4
85 Views
Last Modified: 2016-06-19
Hi,

I have encountered an Enterprise environment with redundant ADFS 2.0 federation servers and Federation proxies. There is an two way trust to an supplier network (the trust will get decommissioned). In the supplier network there is an basic configuration of adfs 3.0 with the regarding WAP servers. Supplier network runs several type of applications. Oracle based apps, Linux based apps running running on Apache 2.x (LAMP) and Microsoft apps.

The question is now mainly focused on the LAMP applications

I have Googled a bit and found the following results:
Spring SAML could be used to make a LAMP application act as Service Provider (SAML 2.x). This is configured within the application.
Shibboleth is used to make Apache act as an service provider

What are the best practices to make Linux Apache applications Service Provider? Communicating with ADFS 2.0
Is there any by Microsoft recommended 3rd party software to use

Note: Security is a huge issue that need to be taken into consideration.

Thank you in advance for your time and effort.

Best regards,
Reza
0
Comment
Question by:RSayadi
  • 2
4 Comments
 
LVL 1

Author Comment

by:RSayadi
ID: 40398745
scanario-01.jpg
0
 
LVL 61

Expert Comment

by:gheist
ID: 40409381
In primitive means apache can support SSO via samba's winbindd.
0
 
LVL 1

Accepted Solution

by:
RSayadi earned 0 total points
ID: 40491524
Solution is to use a simpleSAMLphp or shibboleth kind of product for LAMP applications and add it to ADFS 3, where ADFS 3 can be a SP for ADFS 2 in this scenario. The Oracle OBIEE 9+ (weblogic has built in SAML authentication support and can act as an SP and/or IDP.

This question can be closed
0

Featured Post

New My Cloud Pro Series - organize everything!

With space to keep virtually everything, the My Cloud Pro Series offers your team the network storage to edit, save and share production files from anywhere with an internet connection. Compatible with both Mac and PC, you're able to protect your content regardless of OS.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Is your Office 365 signature not working the way you want it to? Are signature updates taking up too much of your time? Let's run through the most common problems that an IT administrator can encounter when dealing with Office 365 email signatures.
Most of the applications these days are on Cloud. Cloud is ubiquitous with many service providers in the market. Since it has many benefits such as cost reduction, software updates, remote access, disaster recovery and much more.
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now