<?xml version="1.0" encoding="UTF-8"?>
<rss xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:taxo="http://purl.org/rss/1.0/modules/taxonomy/" version="2.0">
  <channel>
    <title>topic Re: SAML Authentication in Adobe Experience Manager Discussions</title>
    <link>https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/saml-authentication/m-p/225205#M8021</link>
    <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;Hi Nitish,&lt;/P&gt;&lt;P&gt;&amp;nbsp; The idea is to suggest right workaround for your use case. I am not challenging on recommendation of user profile storage in AEM.&amp;nbsp; but trying to find when there is no user in publisher and all content are available to anonymous why do you need authentication.&amp;nbsp;&amp;nbsp; If you do not want to discuss the use case in open forum feel free to engage the official&amp;nbsp; channel.&lt;/P&gt;&lt;P&gt;Thanks,&lt;/P&gt;&lt;P&gt;Sham&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
    <pubDate>Wed, 23 Nov 2016 03:47:54 GMT</pubDate>
    <dc:creator>Sham_HC</dc:creator>
    <dc:date>2016-11-23T03:47:54Z</dc:date>
    <item>
      <title>SAML Authentication</title>
      <link>https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/saml-authentication/m-p/225201#M8017</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;Hi,&lt;/P&gt;&lt;P&gt;We are using SAML authentication for login to AEM. It is working fine in author as users are present in AEM or will be created if not present. But for publish instance, users will not be kept in AEM and thus unable to use existing SAML Handler. The&amp;nbsp;documentation also states that it is the limitation of OOTB handler.&lt;/P&gt;&lt;P&gt;&lt;A class="jive-link-external-small" href="https://forums.adobe.com/external-link.jspa?url=https%3A%2F%2Fhelpx.adobe.com%2Fexperience-manager%2Fkb%2Fsaml-demo.html" rel="nofollow" target="_blank"&gt;https://helpx.adobe.com/experience-manager/kb/saml-demo.html&lt;/A&gt;&lt;/P&gt;&lt;P&gt;Limitations &amp;nbsp; &amp;nbsp;&lt;BR /&gt;User Must Exist in AEM&lt;BR /&gt;Users logging in via the handler must exist, or if missing must be created in, AEM (“Autocreate CRX Users” must be checked). This is because the Sling authentication framework, which the &amp;nbsp;SamlAuthenticationHandler is a part of, extracts user credentials from the SAMLResponse and logs into the JCR repository using those credentials.&lt;/P&gt;&lt;P&gt;&lt;BR /&gt;Any suggestion how we can use SAML for authentication for publish. The user base in 2.2 M and thus it is decided not to keep so much users in AEM.&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Tue, 22 Nov 2016 08:28:12 GMT</pubDate>
      <guid>https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/saml-authentication/m-p/225201#M8017</guid>
      <dc:creator>Nitish_Jain01</dc:creator>
      <dc:date>2016-11-22T08:28:12Z</dc:date>
    </item>
    <item>
      <title>Re: SAML Authentication</title>
      <link>https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/saml-authentication/m-p/225202#M8018</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;I believe this is true - you need to have users in AEM.&amp;nbsp;&lt;/P&gt;&lt;P&gt;Watch this GEMS session as it may provide more details:&amp;nbsp;&lt;/P&gt;&lt;P&gt;&lt;A class="jive-link-external-small" href="https://forums.adobe.com/external-link.jspa?url=https%3A%2F%2Fdocs.adobe.com%2Fddc%2Fen%2Fgems%2Fsaml-and-aem.html" rel="nofollow" target="_blank"&gt;https://docs.adobe.com/ddc/en/gems/saml-and-aem.html&lt;/A&gt;&lt;/P&gt;&lt;P&gt;I am talking to internal ppl to see if there is other ways to proceed here.&amp;nbsp;&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Tue, 22 Nov 2016 19:29:15 GMT</pubDate>
      <guid>https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/saml-authentication/m-p/225202#M8018</guid>
      <dc:creator>smacdonald2008</dc:creator>
      <dc:date>2016-11-22T19:29:15Z</dc:date>
    </item>
    <item>
      <title>Re: SAML Authentication</title>
      <link>https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/saml-authentication/m-p/225203#M8019</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;HI Nitish,&lt;/P&gt;&lt;P&gt;&amp;nbsp;&amp;nbsp; There are couple of ways and hack arounds, all need some kind of custamization.&amp;nbsp; Before that what is the use case for protecting the pages in publish when user does not exist in publisher?&lt;/P&gt;&lt;P&gt;Thanks,&lt;/P&gt;&lt;P&gt;Sham&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Tue, 22 Nov 2016 19:43:24 GMT</pubDate>
      <guid>https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/saml-authentication/m-p/225203#M8019</guid>
      <dc:creator>Sham_HC</dc:creator>
      <dc:date>2016-11-22T19:43:24Z</dc:date>
    </item>
    <item>
      <title>Re: SAML Authentication</title>
      <link>https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/saml-authentication/m-p/225204#M8020</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;Hi Sham,&lt;/P&gt;&lt;P&gt;The user base is pretty huge and adobe itself has recommended the client not to keep users in AEM for publish instance.&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Wed, 23 Nov 2016 02:34:33 GMT</pubDate>
      <guid>https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/saml-authentication/m-p/225204#M8020</guid>
      <dc:creator>Nitish_Jain01</dc:creator>
      <dc:date>2016-11-23T02:34:33Z</dc:date>
    </item>
    <item>
      <title>Re: SAML Authentication</title>
      <link>https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/saml-authentication/m-p/225205#M8021</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;Hi Nitish,&lt;/P&gt;&lt;P&gt;&amp;nbsp; The idea is to suggest right workaround for your use case. I am not challenging on recommendation of user profile storage in AEM.&amp;nbsp; but trying to find when there is no user in publisher and all content are available to anonymous why do you need authentication.&amp;nbsp;&amp;nbsp; If you do not want to discuss the use case in open forum feel free to engage the official&amp;nbsp; channel.&lt;/P&gt;&lt;P&gt;Thanks,&lt;/P&gt;&lt;P&gt;Sham&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Wed, 23 Nov 2016 03:47:54 GMT</pubDate>
      <guid>https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/saml-authentication/m-p/225205#M8021</guid>
      <dc:creator>Sham_HC</dc:creator>
      <dc:date>2016-11-23T03:47:54Z</dc:date>
    </item>
    <item>
      <title>Re: SAML Authentication</title>
      <link>https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/saml-authentication/m-p/225206#M8022</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;Hi Sham,&lt;/P&gt;&lt;P&gt;The idea was not to offend you but was just mentioning that the suggestion for not keeping the users in AEM is not suggested by us. Since the client has huge user base, so the solution was recommended.&lt;/P&gt;&lt;P&gt;I am seriously looking for suggestions and help here.&lt;/P&gt;&lt;P&gt;Thanks and Regards,&lt;/P&gt;&lt;P&gt;Nitish&amp;nbsp;&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Wed, 23 Nov 2016 03:51:33 GMT</pubDate>
      <guid>https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/saml-authentication/m-p/225206#M8022</guid>
      <dc:creator>Nitish_Jain01</dc:creator>
      <dc:date>2016-11-23T03:51:33Z</dc:date>
    </item>
    <item>
      <title>Re: SAML Authentication</title>
      <link>https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/saml-authentication/m-p/225207#M8023</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;As Sham suggests - please open a ticket, They need to investigate with you.&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Wed, 23 Nov 2016 14:07:53 GMT</pubDate>
      <guid>https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/saml-authentication/m-p/225207#M8023</guid>
      <dc:creator>smacdonald2008</dc:creator>
      <dc:date>2016-11-23T14:07:53Z</dc:date>
    </item>
    <item>
      <title>Re: SAML Authentication</title>
      <link>https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/saml-authentication/m-p/225208#M8024</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;Thanks Sham and&amp;nbsp;smacdonald2008 for the suggestions.&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Thu, 24 Nov 2016 02:55:27 GMT</pubDate>
      <guid>https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/saml-authentication/m-p/225208#M8024</guid>
      <dc:creator>Nitish_Jain01</dc:creator>
      <dc:date>2016-11-24T02:55:27Z</dc:date>
    </item>
  </channel>
</rss>

