...
- Entity ID – Your internal corporate portal URL.
- SAML SSO URL – Your login page URL, which we will use to redirect users to your identity system.
- Remote logout URL – Your URL, which we will use to redirect users after they log out.
- X509 Certificate – auto-generated certificate file. You need to download, item 5.
After meeting the basic requirements, install ADFS. Configuration and installation are detailed in the Microsoft Knowledge Base:
https://docs.microsoft.com/en-us/windows-server/identity/ad-fs/deployment/deploying-a-federation-server-farm
...
- Endpoint type: Завершение сеанса SAML.
- Binding: Redirect.
- Trusted URL: Logout URL that we have provided in the format https://raketa.travel/sso/slo?clientId=YOUR_CLIENT_ID
Якорь Obtaining the thumbprint of the token signing certificate Obtaining the thumbprint of the token signing certificate
5. Obtaining the thumbprint of the token signing certificate
| Obtaining the thumbprint of the token signing certificate | |
| Obtaining the thumbprint of the token signing certificate |
Incoming requests are confirmed on the Raketa Travel side using the ADFS signature token thumbprint. To get it, open a PowerShell console as a user with administrator rights and run the command
...