Connect to Pydio Cells via On-Premise ADFS serverCreated on 2023/03/06,
About On-Premise ADFS
Azure Active Directory Federation Service platform deployed on-premise provides Single Sign-On on multiple systems and applications from a Windows Server to Windows Users using the SAML2.0 protocol.
Install and configure ADFS service on windows server 2012
Install following this guide
Register Cells as a Relying Party Trust in ADFS
:warning: The callback url (or redirect uri) is generated in the next step. The format of the url may vary depending on the version of Cells so please refer to your admin console.
Create a Relying Party Trust following this guide.
On the Configure URL page, select the Enable support for the SAML 2.0 WebSSO protocol checkbox and enter the callback url generated during the creation of the connector as the Relying party SAML 2.0 SSO service URL.
It can also be configured afterwards in the Endpoints tab of the Relying Party Trust.
On the Configure Identifiers page, add your Cells URL as a Relying Party Trust Identifier. It needs to exactly match with the Entity issuer URL you specified in the connector configuration.
It can also be configured afterwards in the Identifiers tab of the Relying Party Trust.
Add ADFS connector in Cells
Navigate to the Admin Console > Authentication > OAUTH2 / OIDC
Use the following configuration example to create a new connector :
- Connector type :
<your_name_here>(the name will appear to the end user in the Login dialog box)
- SSO URL user for POST Value:
- CA to use when validating the signature of the SAML response :
- Callback URL : (generated - use it to register cells as a relying party trust in adfs)
- Name of the attributes to map in the ID Token Claims: (may vary for your usecase)
- Manually specify issuers value:
- Entity issuer:
- Entity issuer: