I know this is not the first, and one of many, post about using ADFS in the backend. I've read most of the other posts on our about this, but to no avail.
app.UseKentorOwinCookieSaver();
It is mentioned this has to be used to make sure cookies don't mess up the process. But the problem is, as a company we use our AD login as auth, which brakes when I enable the above setting.
When I comment out that line I can see the login coming through but I get a
"The requested provider has not been linked to an account"
If I first login using my normal AD account and then press the Link ADFS button I can login using an anonymous browser using those same ADFS credentials for a while (probably until the cookies go bad because I am not using the line I mentioned above).
But aside from that, I want Umbraco to create a new user when a valid ADFS account logs in and the user is unknown.
I'v noticed this part:
// The crucial bit, where we hook into the events when users login or when they are created
wsFedOptions.SetExternalSignInAutoLinkOptions(new ExternalSignInAutoLinkOptions(true, new string[0])
{
OnAutoLinking = OnAutoLinking,
OnExternalLogin = OnExternalLogin
});
and implemented it, and added a LogLine and an exception in both functions. They never get hit. I understand the documentation on 24days is for Umbraco 7, so perhaps something changed. Alas there is no documentation to be found about Umbraco 8 and ADFS.
I did notice a few people here on OUR that got it working, but all of them never posted a real fix.
TLDR;
I am looking for a guide for configuring ADFS with Umbraco 8
Hey, sorry for the late reply. Had quite some busy days.
unfortunately that is not what I am looking for. I am looking for ADFS, which is not like AD at all.
Of course it does overlap, but the overlapping part I already have worked out.
ADFS Backoffice login
Hey all,
I know this is not the first, and one of many, post about using ADFS in the backend. I've read most of the other posts on our about this, but to no avail.
Let me start by saying I basically followed this: https://24days.in/umbraco-cms/2016/authenticating-with-ad-fs-and-identityextensions/
in combination with: https://our.umbraco.com/forum/using-umbraco-and-getting-started/102074-umbraco-adfs-is-not-logging-in
and
https://medium.com/monkii/authenticating-with-ad-fs-in-umbraco-12d1a4c6777e
My first issue is with:
app.UseKentorOwinCookieSaver(); It is mentioned this has to be used to make sure cookies don't mess up the process. But the problem is, as a company we use our AD login as auth, which brakes when I enable the above setting.
When I comment out that line I can see the login coming through but I get a "The requested provider has not been linked to an account"
If I first login using my normal AD account and then press the Link ADFS button I can login using an anonymous browser using those same ADFS credentials for a while (probably until the cookies go bad because I am not using the line I mentioned above).
But aside from that, I want Umbraco to create a new user when a valid ADFS account logs in and the user is unknown.
I'v noticed this part:
and implemented it, and added a LogLine and an exception in both functions. They never get hit. I understand the documentation on 24days is for Umbraco 7, so perhaps something changed. Alas there is no documentation to be found about Umbraco 8 and ADFS.
I did notice a few people here on OUR that got it working, but all of them never posted a real fix.
TLDR; I am looking for a guide for configuring ADFS with Umbraco 8
I think this is what you need https://our.umbraco.com/documentation/Reference/Security/authenticate-with-AD
Hey, sorry for the late reply. Had quite some busy days.
unfortunately that is not what I am looking for. I am looking for ADFS, which is not like AD at all. Of course it does overlap, but the overlapping part I already have worked out.
Did you find some good documentation
is working on a reply...