SAML Authentication

Hello Brett,
SAML is not on our short term roadmap but we are about to release a native integration of AzureAD directly (to be release this September). SAML for other system should be added later.

Regards

Hi, any update regarding SAML ? This is something we really look forward to for our implementation. We're also considering Wayk Now but not switching to it (from ConnectWise control) unless we get proper SAML identity federation support.

I hope to hear good news soon.

Thanks

Hello,
We are not sure if we want to implement SAML. It seems that it has been replaced by OpenID Connect. For which provider would you like to have SAML (OneLogin, G Suite,...)?

By the way, AzureAD is now available in DPS.

Regards

Ok, I bring to you my experience (and btw our Identity provider is Okta, we're partner with them).

1) In medium to large enterprises SAML is currently being implemented and even if a bit complex is the most flexible, stable format. If you want to integrate O365 (as an enterprise) you still use SAML, same is for the vast majority of enterprise software (SAP, ServiceNow, Zendesk, and I can name a few other thousands).

2) OIDC is gaining traction for cloud applications as it's a simplified form of identity federation but not that succesful so far. It is true that Azure & co also provide OIDC but to me it will take years before a large number of enterprises can implement OIDC.

What we see is that customers are implmenting NOW SAML and Identity providers that can offer OIDC are still young.

So, my point of view is that SAML has a few more years of leadership in the real world.

Can I ask what made you think SAML is not worth the effort ?

Thank you for the explanation. I will consider this in our roadmap. I will get back to you about the information for OIDC vs SAML.

Regards

Thank you, looking forward to updates. (And BTW.. OIDC is fine for me as Okta also supports it :)

Been a couple years since anyone mentioned Okta on the site, apparently, so curious where this stands. My new company uses Okta instead of AD for just about everything, and it would be nice if RDM could still be used to maintain those connection credentials somehow, even if it isn't maintaining the authentication credentials.


DOH! Wrong forum. Still, even if RDM requires DPS to make it work, it would be a step forward.

Hello,
It's something we want eventually todo but we have limited resources. I think it would be easier with OAuth2 now than SAML.

Regards

That does make sense. I do know they have a browser plugin, and perhaps just an RDM plugin that is similar would work. It effectively uses Okta as another datasource sending (I presume) requests via API calls to that account. But again, there is that whole resource availability thing.....

+1 of SAML/OAuth2/OpenID, so we can use Okta.
I'm happy to offer up my Okta tenant for testing.

Hello,

We are also interested in SAML/OAuth2/OpenID, so we can use it with Entrust.
Here you have a good explanation for the differences between these protocols: What’s the Difference Between OAuth, OpenID Connect, and SAML? | Okta

Best regards
Samuel

my upvote for SAML or OIDC support. Any news about this topic?

We have been authorized to start on OpenID, it is planned for the 2021.3 release.

Best regards,