Adobe Experience Manager Sites & More

br-wsbrito · 12:10:17 PM

Hi evebody,

I'm working in a project that need to implement two types of authentication one for customers employee using integration between ADFS and SAML and another for external user using AEM form basic.

Until now I can find any documentation about this specific scenario. Any tips will be very useful.

Thanks a lot.

Wagner Brito.

Jörg_Hoh · 6:09:38 AM

Hi,

SAML authentication with SAML is documented at [1]. And what do you mean with "Form authentication"? Is it the "regular authentication" you have on AEM when no SAML is configured? That should work by default, and even when SAML is enabled, too.

[1] https://docs.adobe.com/content/help/en/experience-manager-64/administering/security/saml-2-0-authent...

元の投稿で解決策を見る

Jörg_Hoh · 6:09:38 AM

Hi,

SAML authentication with SAML is documented at [1]. And what do you mean with "Form authentication"? Is it the "regular authentication" you have on AEM when no SAML is configured? That should work by default, and even when SAML is enabled, too.

[1] https://docs.adobe.com/content/help/en/experience-manager-64/administering/security/saml-2-0-authent...

br-wsbrito · 4:58:05 AM

Hi @Jörg_Hoh.

I was talk about "regular authentication". But after configure SAML I can't access the AEM login form. May have a configuration that I forgot to do?

Since now thanks for your answer.

Jörg_Hoh · 2:33:59 PM

Can you post the relevant log entries, when you try to authenticate with a "local" user? "local" means that you create the user within the AEM useradmin console.

br-wsbrito · 6:09:30 AM

Hi @Jörg_Hoh, thank for your time and answers but I can find a solution for my issue. In my case the saml configuration path I put "/aem/start" and others user will access using "/projects" in this way the second group will use AEM authentication. Best regards.

sdouglasmc · 8:23:23 AM

The main key IMO is to make sure the resource you are trying to authenticate is "seen" by the proper authentication handler.

In SAML, you can define the paths that, when a user needs permission to access, will trigger SAML Authenication handler. For all others, it should default to the OOTB Sling Authentication when a CUG or ACL is on the resource.