Your achievements

Level 1

0% to

Level 2

Tip /
Sign in

Sign in to Community

to gain points, level up, and earn exciting badges like the new
BedrockMission!

Learn More

View all

Sign in to view all badges

Use CUG on AEM 6.3 with SAML authentication without user creation in AEM

Avatar

Avatar
Validate 1
Level 4
cqsapientu69896
Level 4

Likes

22 likes

Total Posts

76 posts

Correct Reply

4 solutions
Top badges earned
Validate 1
Give Back 5
Give Back 3
Give Back 10
Give Back
View profile

Avatar
Validate 1
Level 4
cqsapientu69896
Level 4

Likes

22 likes

Total Posts

76 posts

Correct Reply

4 solutions
Top badges earned
Validate 1
Give Back 5
Give Back 3
Give Back 10
Give Back
View profile
cqsapientu69896
Level 4

03-07-2018

We have a requirement of implementing authentication for with 900k to 1 million users. We are using SAML authentication handler for authentication, but we do not want to create users in AEM  , to void the load of handling 900k to 1 million users in AEM publish instances. We know that for SAML authentication , user need to be present in AEM.

Is it possible to login user with a default user in AEM, after successful SAML authentication ?

Need info AEM 6.2: Ability to extend SAML Authentication Handler for customizing user creation

Can the CUG groups be used for the default user, based on group membership attributes from the SAML assertion?( Or is it necessary to have users created in AEM for the new AEM 6.3 CUG functionality to work properly ? We are thinking of authenticating the user with a default user , and then using group attributes from SAML assertion to use the CUG features .

It is mentioned in very few details in this forum post that for CUG users do not necessarily need to be present in AEM

Custom LoginModule and Closed User Groups

Could the community members please provide their thoughts? Will appreciate it.

Thanks

Accepted Solutions (0)

Answers (1)

Answers (1)

Avatar

Avatar
Level 1
matthewmbb
Level 1

Likes

0 likes

Total Posts

1 post

Correct Reply

0 solutions
View profile

Avatar
Level 1
matthewmbb
Level 1

Likes

0 likes

Total Posts

1 post

Correct Reply

0 solutions
View profile
matthewmbb
Level 1

31-07-2018

I think I have a similar question, I have a customer facing application with multiple tiers of access to functionality that Im thinking of using CUG's to restrict/hide access menu items/content. I have to use SAML SSO with Salesforce as Identity Provider and want to use group policies somehow without creating the users / groups in AEM.