On Thu, Apr 7, 2022 at 5:22 AM Shivangi, Shivangi <[email protected]> wrote:
> Hi Guacamole Team, > > I have installed new image of maxwaldorf/guacamole and added > guacamole-auth-sso-1.4.0.jar to Extensions, > when we add extension-priority: saml in Guacamole.properties, its looping > while we hit the URL . > > If we remove this parameter we are getting option to logon with username > and password. > But from SSO we should directly login without giving username and password. > > Can you please help if we need to add any extra properties in SAML or any > settings in Azure AD. > > saml-idp-metadata-url: ********************************< > https://login.microsoftonline.com/b75a10a5-7d1d-4f9e-a5f8-fa70d92d3b98/federationmetadata/2007-06/federationmetadata.xml?appid=ffc4e1af-60fc-40c5-b209-dbf330c12c08 > > > saml-entity-id: ***************************************< > https://demo-desktopapps.myindustry-banking.com> > saml-callback-url: ************************************** > saml-debug: true What do you see in your Guacamole logs? Assuming you see an error regarding validation of the SAML request, and assuming you are using a reverse proxy for SSL termination in front of Guacamole, can you share your SSL termination config? - Mike
