Last updated: 2022-06-10
Purpose
This article explains how to adjust a SAML Metadata file of Identity Provider (IdP) to be used in OUTSCAN or HIAB Identity Provider integration.
Introduction
The Adjust Identity Provider SAML Metadata File procedure explains how to prepare and modify the metadata file provided by an external identity provider before it is uploaded to the Outpost24 platform for Single Sign-On (SSO) integration. When configuring SAML-based authentication in OUTSCAN or HIAB, the identity provider supplies a metadata file that describes the provider configuration, including endpoints, certificates, and other authentication parameters. This file must follow the SAML standard so that the platform can correctly interpret and trust the authentication information delivered by the identity provider.
In some cases, the metadata file exported from the identity provider may not fully meet the required format for the platform. The document explains how to review and adjust the XML metadata file to ensure that required elements are present and correctly structured before uploading it. If elements are missing, the platform may reject the file during the integration process. By validating and adjusting the SAML metadata file before uploading it, administrators can ensure that identity provider integrations function correctly and securely. Properly formatted metadata allows the platform to establish trusted communication with the identity provider, enabling reliable SAML-based authentication and a consistent Single Sign-On experience for users accessing the system.
Upload the SAML Metadata File
To integrate an Identity Provider (IdP) in OUTSCAN or HIAB, upload the SAML Metadata file describing the IdP. This file must comply to the SAML standard.
Open the SAML Metadata file retrieved from the Identity Provider (IdP) and make sure that:
-
The file contains the XML tag: <?xml version='1.0' encoding='UTF-8'?>
XML tag consideration
If the XML tag is not present, just add the following tag <?xml version='1.0' encoding='UTF-8'?> at the beginning of the file.
-
The EntityDescriptor section contains validUntil attribute
validUntil attribute consideration
If this attribute is not present, just add it using the following format: validUntil="YYYY-MM-DDTHH:MM:SS"
A valid SAML Metadata file should looks like the following
SAML Metadata file consideration
Uploading the file in its current state will result in an error.
Related Articles
- ServiceNow - Legacy
- Identity Provider Settings
- Okta Identity Provider Configuration
- Database Connector (HIAB only)
- Azure AD Identity Provider Configuration
- SNMP (HIAB only)
- ADFS Identity Provider Configuration
- Splunk
- Amazon
- Atlassian Jira
- Syslog (HIAB only)
- Thycotic
- OneLogin Identity Provider Configuration
- CyberArk
- LDAP/AD