Hello Community,

I'm trying to configurate NAM 3.2 as Identity Provider (SAML) for
SugarCRM 6.5, but i have some problems, my configuration is:


>login URL: https://<mydomain>:30000/nidp/saml2/sso (the IDS is

Accelerated by Access Gateway in that port)
>cert base64: <mycert in base64>

NAM 3.2:

> In shared settings mapping Ldap Attribute:mail [LDAP Attribute

Profile] <--> emailAddress
>In SAML 2.0 tab:
>Configure ldap attribute by post method (auth response) and the

service provider metadata used is the follow:

<EntityDescriptor entityID="php-saml"
xmlns="urnasis:names:tc:SAML:2.0:metadata" >
<SPSSODescriptor AuthnRequestsSigned="false" WantAssertionsSigned="true"
protocolSupportEnumeration="urnasis:names:tc:SAML:2.0rotocol" >
<NameIDFormat >
urnasis:names:tc:SAML:2.0:nameid-format:emailAddress</NameIDFormat >
<AssertionConsumerService index="1"
</SPSSODescriptor >
</EntityDescriptor >

The problem i have is that when the user browse sugarcrm page is
redirected to my Identity Server but the identity server not promp the
login page for the user to enter credentials,only generates saml
response and redirects the user to sugar crm page and this last one
shows a blank page (because the user is not authenticated)
Anyone tried to configurate this CRM with NAM?


esandoval_identicum's Profile: https://forums.netiq.com/member.php?userid=1529
View this thread: https://forums.netiq.com/showthread.php?t=44984