SAML Server: Difference between revisions

← Older edit

SAML Server (view source)

Revision as of 09:36, 8 December 2018

928 bytes added , 5 years ago

→‎Installation

Amanjosan2008

Bureaucrats, Administrators

4,400

edits

Revision as of 14:53, 19 May 2017 (view source) Amanjosan2008 (talk \| contribs) m (→‎Configuring SAML Server: m) ← Older edit		Latest revision as of 09:36, 8 December 2018 (view source) Amanjosan2008 (talk \| contribs) (→‎Installation)
(10 intermediate revisions by the same user not shown)
Line 1: [[Category:Lab]] = ~~Creating~~Installing SAML Server = Source: [https://www.helloitsliam.com/2014/12/23/install-configure-and-test-simplesamlphp-for-authentication-testing/ helloitsliam.com],[https://support.citrix.com/article/CTX200271 support.citrix.com], [https://simplesamlphp.org/docs/stable/simplesamlphp-idp simplesamlphp.org], [https://www.citrix.com/blogs/2012/08/24/174193098/ citrix.com] Line 19: Installing SimpleSAMLphp binaries: cd /var sudo wget https://github.com/simplesamlphp/simplesamlphp/releases/download/v1.14.12/simplesamlphp-1.14.12.tar.gz sudo tar zxf simplesamlphp-1.14.12.tar.gz▼ OR cd simplesamlphp-1.14.12/▼ sudo mvwget https://simplesamlphp-1.~~14.12 simplesamlphp~~org/download?latest sudo rmmv -fdownload\?latest simplesamlphp~~-1.14.12~~.tar.gz ▲ sudo tar zxf simplesamlphp-~~1.14.12~~.tar.gz sudo mv simplesamlphp-* simplesamlphp ▲ cdsudo rm -f simplesamlphp-1.14tar.~~12/~~gz cd simplesamlphp/ == Configuring SAML Server as IDP == Modify the below files as per given parameters depending on your environment: Line 150 ⟶ 155: == Configuring Apache Server == Pointing Apache to SimpleSAMLphp by editing below file: ~~sudo nano~~; /etc/apache2/sites-available/000-default.conf ~~{{UC}}~~ <pre> <VirtualHost :80> ServerAdmin webmaster@localhost DocumentRoot /var/www/html ErrorLog ${APACHE_LOG_DIR}/error.log CustomLog ${APACHE_LOG_DIR}/access.log combined Alias /simplesaml /var/simplesamlphp/www/ <Directory /var/simplesamlphp/www/> Require all granted </Directory> </VirtualHost> </pre> Now check if application is accessible over HTTP: http://<ip-address-of-server>/simplesamlphp == Enabling SSL Access == Generate Certificates Enabling Secure (read SSL) access: cd /etc/apache2/ Line 169 ⟶ 189: sudo openssl x509 -req -days 9999 -in Certificate.csr -signkey Certificate.key -out Certificate.crt Restart Apache sudo a2enmod ssl sudo service apache2 restart Point Apache to use these Certificates by editing below config file: ~~sudo nano~~; /etc/apache2/sites-available/000-default.conf ~~{{UC}}~~ <pre> <VirtualHost :443> ServerAdmin webmaster@localhost DocumentRoot /var/www/html SSLCertificateFile /etc/apache2/ssl/wildcard.testlab.com.cer SSLCertificateKeyFile /etc/apache2/ssl/wildcard.testlab.com.pem SSLEngine On ErrorLog ${APACHE_LOG_DIR}/error.log CustomLog ${APACHE_LOG_DIR}/access.log combined Alias /simplesaml /var/simplesamlphp/www/ <Directory /var/simplesamlphp/www/> Require all granted </Directory> </VirtualHost> </pre> *Restart Apache sudo a2ensite ssl sudo a2enmod ssl Line 184 ⟶ 226: https://<ip-address-of-server>/simplesamlphp ~~== Logs ==~~ ~~{{UC}}~~ ~~== Packet Captures ==~~ ~~{{UC}}~~