Authenticating by using SAML 2.0 Single Sign-On
To set up SAML based SSO authentication in Focal Point:
1 lib\security folder with the JRE you are using with Focal Point.
2
http://www.oracle.com/technetwork/java/javase/downloads/jce8-download-2133166.html
3 < Java Installation Location >\bin and running the following command:
keytool -genkeypair -alias <aliasname > -keypass <password > -keystore <keystorename .jks> -keyalg RSA -keysize 2048
For example:
keytool -genkeypair -alias adfs2 -keypass focalpoint -keystore adfs2.jks -keyalg RSA -keysize 2048
4
keytool -importcert -alias <aliasname > -file <idpCertificate .cer> -keystore <keystorename .jks>
For example:
keytool -importcert -alias myidp -file myidp.cer -keystore adfs2.jks
5 <keystorename.jks> to the < FocalPoint Install Directory >/server/conf/fp/keystore folder.
6 < federationmetadata .xml> to the < FocalPoint Install Directory >/server/conf/fp/metadata folder.
7 < FocalPoint Install Directory >/server/conf/fp folder, open the saml.properties file and specify the entries.
For example, the sample saml.properties file has the following entries:
keyStoreFile=adfs2.jks
keyPassword=focalpoint
keyAlias=adfs2
metadataFile=federationmetadata.xml
signatureAlgorithm=SHA256
8 spring.profiles.active in the server.startup.bat file as below:
spring.profiles.active=auth-saml
9
Focal Point Meta Data can be accessed by accessing the following URL:
https://<servername:port >/fp/saml/metadata
This site works best with JavaScript enabled