Tagged: container-managed authentication
February 4, 2020 at 8:46 am #27537
I am very new to Forgerock,
I need your expertise advice on implementing SSO SAML MFA for one of our applications. Currently, We are using WebSphere version 8.5 and we use container-managed authentication with LDAP. We got the requirement to implement Forgerock SSO. I am not able to find any documentation which gives step by step implementation. Please, someone, guide me on this. Note : We implemented spnego with Windows SSO- Is it similar to that? do we need any other configuration?February 4, 2020 at 9:39 pm #27541William HeplerParticipant
I don’t believe SAML and SPENGO will be similar. This SAML would be more like WS-FED in the windows world.
From an AM perspective AM can use SAML with any compliant provider. Normally you will have a IDP and a SP and share MetaData to configure and setup SAML.
Will Websphere be the Identity provide or Service Provider? It sounds like Websphere would be the SP, and AM would be your Hosted IDP.
You could review the FAQ about SAML from AM
The following is the SAML guide from the docs.
But I don’t believe there is specific details on how to setup Websphere for SAML in our Documentation.February 5, 2020 at 6:38 am #27543
In my case Websphere is SP and AM is IDP. ( AM configuration will be taken care by our global team)
I need to provide the steps to configure SP and how to get User principals.
RajFebruary 5, 2020 at 11:25 pm #27563William HeplerParticipant
I would recommend then finding Websphere/IBM’s documentation on SAML federation. They should as a standard have a way to export and import metadata.
You will provide Metadata from your WAS server to the AM group and they will provide MetaData to you to create the federation.February 6, 2020 at 3:55 am #27564
Thanks, Williams for your help. I got some documentation on this.
You must be logged in to reply to this topic.