AEM6.5 SAML metadata | Community
Skip to main content
This post is no longer active and is closed to new replies. Need help? Start a new post to ask your question.
Best answer by Chandra_Hire

Hi @johann_lu 

SAML metadata is used to share configuration information between the Identity Provider (IdP) for example Azure AD. and the Service Provider (SP) for example your application/AEM for that matter. Metadata for the IdP and the SP is defined in XML files

 

The IdP metadata XML file contains the IdP certificate, the entity ID, the redirect URL (after successful authentication), the logout URL etc. he SP metadata XML file contains the SP certificate, the entity ID, the Assertion Consumer Service URL (ACS URL) etc. Meta-data also contains the hierarchical information about user/group storage e.g. oragnization id, user group name etc and this meta-data can be used to sync the users/groups after successful authentication (Some of the attributes used in AEM cofigurations for SSO - Configuring LDAP with AEM 6 | Adobe Experience Manager.)

 

Based on the Idp and SP being used for your SAML for SSO, respective systems provides wizard/tools to generate meta-data xmls for SAML configuration e.g. steps for Azure AD - Configure a SAML 2.0 provider for portals with Azure AD - Power Apps | Microsoft Learn 

 

Hope this helps

Can also be possible with external tools - SAML Identity Provider (IdP) XML Metadata Builder | SAMLTool.com

2 replies

krati_garg
Adobe Employee
krati_gargAdobe Employee
Adobe Employee
December 9, 2022

@johann_lu I believe this is the metadata from SP, that IdP is looking for. Check the URL

https://labs.tadigital.com/index.php/2017/10/10/saml-single-sign-on-sso-for-aem-authorpublish-part-2/#:~:text=Following%20are%20the%20Service%20Provider%20(SP)%20details%20communicated%20to%20IDP%20admin

Also, please go through the same Blog for a detailed process for a SSO set up. Insightful read

    J
    Johann_LuAuthor
    Level 4
    December 12, 2022

    The IDP needs a xml file

      krati_garg
      Adobe Employee
      krati_gargAdobe Employee
      Adobe Employee
      December 12, 2022

      @johann_lu Following tutorials should help you:
      https://helpx.adobe.com/in/experience-manager/kb/saml-demo.html

      http://suryakand-shinde.blogspot.com/2015/10/aem-and-saml-detailed-installation-and.html

       

        Chandra_Hire
        Chandra_HireAccepted solution
        Level 4
        December 13, 2022

        Hi @johann_lu 

        SAML metadata is used to share configuration information between the Identity Provider (IdP) for example Azure AD. and the Service Provider (SP) for example your application/AEM for that matter. Metadata for the IdP and the SP is defined in XML files

         

        The IdP metadata XML file contains the IdP certificate, the entity ID, the redirect URL (after successful authentication), the logout URL etc. he SP metadata XML file contains the SP certificate, the entity ID, the Assertion Consumer Service URL (ACS URL) etc. Meta-data also contains the hierarchical information about user/group storage e.g. oragnization id, user group name etc and this meta-data can be used to sync the users/groups after successful authentication (Some of the attributes used in AEM cofigurations for SSO - Configuring LDAP with AEM 6 | Adobe Experience Manager.)

         

        Based on the Idp and SP being used for your SAML for SSO, respective systems provides wizard/tools to generate meta-data xmls for SAML configuration e.g. steps for Azure AD - Configure a SAML 2.0 provider for portals with Azure AD - Power Apps | Microsoft Learn 

         

        Hope this helps

        Can also be possible with external tools - SAML Identity Provider (IdP) XML Metadata Builder | SAMLTool.com

          Terms & ConditionsAccessibility statement

          Loading footer...