HI Kyaw, Have you followed the instructions on setting IIS permissions in the README file bundled with the sample download ?
The URL you see has SAMLRequest sent as a query parameter so the length is justified. IE has a limit of 2083 characters on URLs so as long as your SAMLRequest URL is lesser than that, it should be fine. -Anirudh On Sep 23, 1:41 am, kms <[EMAIL PROTECTED]> wrote: > Hi Aniruth > Thanks for your reply. I followed as you said for sso setting on > control panel. > here is the new problem > after the url request mail.google.com/a/mydomail it does go to > local host to get smal reqquest but > smal requeste is failed i think saying web server error saying handler > not yet determined > here is the redircted > linkhttp://localhost/GoogleAppsSso/Prompt.aspx?SAMLRequest=fVLLbtswELwX6D... > why is it too long and i think the rquest failed. > I follow miscrosoft online help suggestion for those error like > permission but still it didnt work. > > thanks and regards, > kyaw > > On Sep 22, 3:03 am, "Anirudh (Google)" <[EMAIL PROTECTED]> wrote: > > > Hi Kyaw, > > > In the Control Panel, under Advanced Tools -> SSO Settings, you can > > enter your SSO configuration and click Save Changes at the bottom of > > the page. You should be able to view these settings anytime you visit > > the SSO Settings page. > > > In case you experience any issues like settings not being saved, > > support ticket can be raised from the 'Admin Support' section under > > Control Panel -> Domain Settings -> Account Information. > > Our support team will then work closely with you to resolve it. > > You will need your Customer & Support PIN while raising the request > > which you can find in the same section i.e. Admin Support . > > > -Anirudh > > > On Sep 19, 9:08 pm, kms <[EMAIL PROTECTED]> wrote: > > > > Hi Anirudh > > > can u clarify this statement > > > " your control panel and reconfirm that your Sign- > > > In URL and other SSO settings are saved and visible when the > > > redirection fails" > > > after putting all the url and upload certificate, all the url are > > > disappeared , sayting all the settings are saved. > > > after trying > > > http://mail.google.com/a/yadanacorp.com, > > > as i said it goes to > > > > > > https://www.google.com/a/yadanacorp.com/ServiceLogin?service=mail&pas... > > > which is my login for my domain mail > > > > Where I can raise the support ticket so that my problem will be > > > solved. > > > > thanks and regards,KyawSoe > > > > On Sep 19, 3:20 am, "Anirudh (Google)" <[EMAIL PROTECTED]> wrote: > > > > > HiKyaw, > > > > > There is no change required in code for SSO to be triggered by Google > > > > Apps. > > > > > Can you please visit your control panel and reconfirm that your Sign- > > > > In URL and other SSO settings are saved and visible when the > > > > redirection fails ? If you continue experiencing this behavior, > > > > please raise asupportticketso that we can share domain related > > > > information securely and work towards resolving it. Instructions for > > > > the same are in your control panel. > > > > > -Anirudh > > > > > On Sep 19, 9:50 am, kms <[EMAIL PROTECTED]> wrote: > > > > > > hi Tonny, > > > > > thanks for your reply. I understand what you are saying. I followed > > > > > the readme file that stated what you suggested. > > > > > but i still have same problem. > > > > > http://mail.google.com/a/yadanacorp.com > > > > > and it didnt redirect me to localhost address (http://localhost/ > > > > > GoogleAppsSso/Prompt.aspx) > > > > > it gives me this > > > > > addresshttps://www.google.com/a/yadanacorp.com/ServiceLogin?service=mail&pas... > > > > > which is login for my domain mail > > > > > > at the same time, i specify sign-in page, singn-out and change > > > > > password page > > > > > > in addition to the instructions in the readme file, do I need change > > > > > something (like in the code) > > > > > > Thanks and regards, > > > > >Kyaw > > > > > > On Sep 18, 6:01 pm, "Tony (Google)" <[EMAIL PROTECTED]> wrote: > > > > > > > HiKyaw, > > > > > > > Have you enabled SSO in your cpanel? > > > > > > > The following FAQ describes how to enable SSO and access SSO > > > > > > settings: > > > > > > >http://www.google.com/support/a/bin/answer.py?answer=60757 > > > > > > > Please make sure that you specify the Sign-in page, Sign-out page > > > > > > and > > > > > > Change password URLs that your domain is using: > > > > > > > e.g. Sign-in page:http://localhost/GoogleAppsSso/Prompt.aspx > > > > > > > Thanks, > > > > > > > --Tony > > > > > > > On Sep 18, 12:41 pm, kms <[EMAIL PROTECTED]> wrote: > > > > > > > > Hi > > > > > > > this is my first post here. I m sorry if it is not in the right > > > > > > > place > > > > > > > I am trying to make . NET sso sample code work. Here is the > > > > > > > issue i > > > > > > > have > > > > > > > > After following the 'readme' file and run the code. > > > > > > > http://mail.google.com/a/mydomain.com > > > > > > > it goes to my domain mail login webpage but it didnt redirect > > > > > > > the > > > > > > > web page like > > > > > > > http://localhost/GoogleAppsSso/Prompt.aspx > > > > > > > > Please tell me why it is happening. I tried my times already > > > > > > > > PS: i have google apps premiun version for sso > > > > > > > > thanks and regards, > > > > > > >kyaw > > > > > > > > On Sep 15, 6:07 am, "Anirudh (Google)" <[EMAIL PROTECTED]> wrote: > > > > > > > > > Hi, > > > > > > > > > On second thoughts, it would be better not to relay the > > > > > > > > 'loginAttempts' between client/server and maintain it using > > > > > > > > ASP.NET > > > > > > > > session state instead to keep it secured. > > > > > > > > > -Anirudh > > > > > > > > > On Sep 15, 12:28 pm, "Anirudh (Google)" <[EMAIL PROTECTED]> > > > > > > > > wrote: > > > > > > > > > > Hi, > > > > > > > > > > Your understanding is correct on the sequence of events. > > > > > > > > > On failed authentication attempts, it is really a business > > > > > > > > > choice > > > > > > > > > whether to redirect to an error page and lock the user > > > > > > > > > account or to > > > > > > > > > let the users retry. For example, you can choose to allow > > > > > > > > > users to > > > > > > > > > attempt to login say three times and then decide to lock the > > > > > > > > > user > > > > > > > > > account in your system for sometime. > > > > > > > > > > This can be achieved by saving the SAMLRequest and RelayState > > > > > > > > > in UI > > > > > > > > > fields as done in the demo along with an additional Login > > > > > > > > > attempts > > > > > > > > > count variable. I do not have code for the same but it should > > > > > > > > > be > > > > > > > > > fairly simple to implement > > > > > > > > > > The if..else block would look like: > > > > > > > > > > if ( Int.parse(Request['loginAttempts'] ) > 3 ) > > > > > > > > > { > > > > > > > > > //lock user account > > > > > > > > > // redirect to error page} > > > > > > > > > > else > > > > > > > > > { > > > > > > > > > //try authentication > > > > > > > > > if ( invalid credentials ) > > > > > > > > > { > > > > > > > > > //redirect to login page again incrementing > > > > > > > > > loginAttempts and > > > > > > > > > sending it along with SAMLRequest and RelayState > > > > > > > > > > } > > > > > > > > > else > > > > > > > > > { > > > > > > > > > SetUpGoogleLoginForm( username ); > > > > > > > > > } > > > > > > > > > > } > > > > > > > > > > But like i said, it is an option based on your business/use > > > > > > > > > case. > > > > > > > > > > -Anirudh > > > > > > > > > > On Sep 12, 11:27 am, eiklin <[EMAIL PROTECTED]> wrote: > > > > > > > > > > > Hi, > > > > > > > > > > > i am looking at the source code of the .NET Single Sign-On > > > > > > > > > > sample that > > > > > > > > > > is currently at version 1.0.1. > > > > > > > > > > > i noticed that we are supposed to perform our custom > > > > > > > > > > authentication > > > > > > > > > > method to verify the userid and password, and if the custom > > > > > > > > > > authentication is successful, the program should then call > > > > > > > > > > the > > > > > > > > > > SetupGoogleLoginForm(username) function. > > > > > > > > > > > I noticed also that the above is not in the form of a if.. > > > > > > > > > > else.. > > > > > > > > > > statement, so may I know what is the recommended action to > > > > > > > > > > take in the > > > > > > > > > > event that the custom authentication is not successful? Do a > > > > > > > > > > redirection or retry the authentication? I would appreciate > > > > > > > > > > if you > > > > > > > > > > could also provide the corresponding code for implementing > > > > > > > > > > the > > > > > > > > > > suggested method. > > > > > > > > > > > thank you very much,- Hide quoted text - > > > > > > > > > - Show quoted text -- Hide quoted text - > > > > > - Show quoted text -- Hide quoted text - > > > - Show quoted text - --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Google Apps APIs" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/google-apps-apis?hl=en -~----------~----~----~----~------~----~------~--~---
