Hi All, Does anyone have any document or link to instruction...

[Bajr Prakash Singh]

Hi All,

Does anyone have any document or link to instructions manual for reference to set up SAML authentication in WebFOCUS with any identity provider(Ex. Okta, DUO etc)

Thanks

[Ron Moore]

https://docs.tibco.com/emp/wf-wf/9.0.0/doc/pdf/TIB_wfwf_9.0.0_security_administration.pdfid=11

[Toby Mills]

Hi Prakash,

Welcome to the forum. As Ron has already pasted a link for the current Security and Administration manual, I think youll find what youre after on page 296 of that document.

If youre playing admin, which I presume you are by your question, youll want to keep this document handy.

We can use several sorts of identity providers. SAML is one of them.

[David Hall 5]

We use SAML for external authentication.

The security and admin manual does a good job explaining the various gui tabs and recommends just sticking with the default values. The admin manual does NOT include any screenshots.

Our experience is that we would recommend staying with the defaults.

We assembled an enhanced version of the manual with screenshots for each paragraph.

Since we are running https on IIS to redirect to Tomcat port 80 to port 443. We had an alias defined in the tomcat server.xml like the following:

proxyName=dnsproxynamegoeshere

proxyPort=443

This proxy name was a DNS and we could hit it with the DNS name, and we added it to IIS https certficate so it was a subject alternative name.

When you are ready to generate the metadata to send to the ping federate staff or their side of thing, we discovered that if you used the fully qualified https name when you went to the SAML option all the defaults were fully properly set up in the gui, no need to retype anything

[Bajr Prakash Singh]

Thanks for the document, Ron.

[Bajr Prakash Singh]

Hi Toby,

Agree, this document is really handy for security configuration.