Using Microsoft Active Directory Federation Services for SAML Authentication¶
If you are using Microsoft Active Directory Federation Services (ADFS) for user authentication, then you will need to add an extra Endpoint to your configured Relying Party Trust in order for the Wizard to authenticate against AD FS.
- Open the AD FS Management console and select Relying Party Trusts from the navigation pane.
- Select the configured relying party trust and select Properties.
From the Endpoints tab, select Add SAML….
The Edit Endpoint dialog is displayed.
Edit the endpoint as follows: 1. From the Endpoint type list, select "SAML Assertion Consumer". 2. From the Binding list, select
POST. 3. Add the Index which does not exist yet. Do not make this the default. 4. Add the following as the Trusted URL:
https://<AdminAPIURL>/mobileservices/origin/hcpms/application/v1/odata/admin/ApplicationSet/$count4. Select OK to save your settings and close the Edit Endpoint dialog. 5. Select OK to close the Properties dialog.