AEM SSO - SAML 2.0 Authentication - Azure AD

Question

We have recently enabled SSO SAML2.0 Authentication with Microsoft Azure AD. We were successfully able to integrate AEM with Azure AD. Every time when we hit the AEM URL, it takes us to SSO Provider, and upon successful authentication, it takes us to start.html of AEM. Also, users are created with synchronized attributes specified in the configuration.

However, we cant login as admin or other AEM users, since the legacy AEM login page is replaced with the SSO login page. Tried modifying the path variable in SAML OSGI Config but no luck we had to revert the OSGI Configuration.

Please let us know if there is any other way to achieve the SSO with restricted paths and also with login as admin/other aem users (tried directly accessing crx/de or system/console still it is redirecting to SSO login Page)

Followed Adobe recommended article(s).

https://docs.adobe.com/content/help/en/experience-manager-65/administering/security/saml-2-0-authenticationhandler.html

https://helpx.adobe.com/experience-manager/kb/simple-saml-demo.html

AlbinIs1 · Accepted Answer

The URL /libs/granite/core/content/login.html should be already excluded from the Authentication(enabled for anonymous access) through "Apache Sling Authentication Service"

Please verify and exclude if not excluded already

Now the AEM login page can be invoked through - http://localhost:4502/libs/granite/core/content/login.html

Regards

Albin I

www.albinsblog.com

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded