6.3. 認証タイプ: SAML

一般設定

Expand

Automation controller 2.4 プラットフォームゲートウェイ 2.6

Automation controller 2.4	プラットフォームゲートウェイ 2.6
`SOCIAL_AUTH_SAML_ENABLED_IDPS: Keycloak: null entity_id: 'https://idp.example.com/auth/realms/awx' url: 'https://idp.example.com/auth/realms/awx/protocol/saml' x509cert: MIICert... attr_username: username attr_email: email SOCIAL_AUTH_SAML_SP_ENTITY_ID: 'https://controller.example.com:8043' SOCIAL_AUTH_SAML_SP_PUBLIC_CERT: MIICertPublic... SOCIAL_AUTH_SAML_SP_PRIVATE_KEY: MIIKeyPrivate...` Copy to Clipboard Toggle word wrap	`"configuration": { "IDP_URL": "https://idp.example.com/auth/realms/awx/protocol/saml", "IDP_X509_CERT": "-----BEGIN CERTIFICATE-----\nMIICert...\n-----END CERTIFICATE-----", "IDP_ENTITY_ID": "https://idp.example.com/auth/realms/awx", "IDP_ATTR_EMAIL": "email", "IDP_ATTR_USERNAME": "username", "SP_ENTITY_ID": "https://controller.example.com:8043", "SP_PUBLIC_CERT": "MIICertPublic...", "SP_PRIVATE_KEY": "MIIKeyPrivate..." }` Copy to Clipboard Toggle word wrap

SOCIAL_AUTH_SAML_ENABLED_IDPS:
  Keycloak: null
  entity_id: 'https://idp.example.com/auth/realms/awx'
  url: 'https://idp.example.com/auth/realms/awx/protocol/saml'
  x509cert: MIICert...
  attr_username: username
  attr_email: email
SOCIAL_AUTH_SAML_SP_ENTITY_ID: 'https://controller.example.com:8043'
SOCIAL_AUTH_SAML_SP_PUBLIC_CERT: MIICertPublic...
SOCIAL_AUTH_SAML_SP_PRIVATE_KEY: MIIKeyPrivate...

SOCIAL_AUTH_SAML_ENABLED_IDPS:
  Keycloak: null
  entity_id: 'https://idp.example.com/auth/realms/awx'
  url: 'https://idp.example.com/auth/realms/awx/protocol/saml'
  x509cert: MIICert...
  attr_username: username
  attr_email: email
SOCIAL_AUTH_SAML_SP_ENTITY_ID: 'https://controller.example.com:8043'
SOCIAL_AUTH_SAML_SP_PUBLIC_CERT: MIICertPublic...
SOCIAL_AUTH_SAML_SP_PRIVATE_KEY: MIIKeyPrivate...

Copy to Clipboard

Toggle word wrap

"configuration": {
  "IDP_URL": "https://idp.example.com/auth/realms/awx/protocol/saml",
  "IDP_X509_CERT": "-----BEGIN CERTIFICATE-----\nMIICert...\n-----END CERTIFICATE-----",
  "IDP_ENTITY_ID": "https://idp.example.com/auth/realms/awx",
  "IDP_ATTR_EMAIL": "email",
  "IDP_ATTR_USERNAME": "username",
  "SP_ENTITY_ID": "https://controller.example.com:8043",
  "SP_PUBLIC_CERT": "MIICertPublic...",
  "SP_PRIVATE_KEY": "MIIKeyPrivate..."
}

"configuration": {
  "IDP_URL": "https://idp.example.com/auth/realms/awx/protocol/saml",
  "IDP_X509_CERT": "-----BEGIN CERTIFICATE-----\nMIICert...\n-----END CERTIFICATE-----",
  "IDP_ENTITY_ID": "https://idp.example.com/auth/realms/awx",
  "IDP_ATTR_EMAIL": "email",
  "IDP_ATTR_USERNAME": "username",
  "SP_ENTITY_ID": "https://controller.example.com:8043",
  "SP_PUBLIC_CERT": "MIICertPublic...",
  "SP_PRIVATE_KEY": "MIIKeyPrivate..."
}

Copy to Clipboard

Toggle word wrap

マッピング

Expand

Automation controller 2.4 プラットフォームゲートウェイ 2.6

Automation controller 2.4	プラットフォームゲートウェイ 2.6
`SOCIAL_AUTH_SAML_ORGANIZATION_MAP: "Default": users: true` Copy to Clipboard Toggle word wrap	`{ "name": "Default - Users (users)", "map_type": "organization", "order": 1, "authenticator": -1, "triggers": { "users": true }, "organization": "Default", "team": null, "role": "Organization Member", "revoke": true }` Copy to Clipboard Toggle word wrap
`SOCIAL_AUTH_SAML_USER_FLAGS_BY_ATTR: is_superuser_attr: "is_superuser" is_superuser_value: "true"` Copy to Clipboard Toggle word wrap	`{ "name": "is_superuser - role", "authenticator": -1, "revoke": true, "map_type": "is_superuser", "team": null, "organization": null, "triggers": { "attributes": { "is_superuser": { "has_or": [ "true" ] } } }, "order": 2 }` Copy to Clipboard Toggle word wrap

SOCIAL_AUTH_SAML_ORGANIZATION_MAP:
 "Default":
    users: true

SOCIAL_AUTH_SAML_ORGANIZATION_MAP:
 "Default":
    users: true

Copy to Clipboard

Toggle word wrap

{
  "name": "Default - Users (users)",
  "map_type": "organization",
  "order": 1,
  "authenticator": -1,
  "triggers": {
    "users": true
  },
  "organization": "Default",
  "team": null,
  "role": "Organization Member",
  "revoke": true
}

{
  "name": "Default - Users (users)",
  "map_type": "organization",
  "order": 1,
  "authenticator": -1,
  "triggers": {
    "users": true
  },
  "organization": "Default",
  "team": null,
  "role": "Organization Member",
  "revoke": true
}

Copy to Clipboard

Toggle word wrap

SOCIAL_AUTH_SAML_USER_FLAGS_BY_ATTR:
 is_superuser_attr: "is_superuser"
 is_superuser_value: "true"

SOCIAL_AUTH_SAML_USER_FLAGS_BY_ATTR:
 is_superuser_attr: "is_superuser"
 is_superuser_value: "true"

Copy to Clipboard

Toggle word wrap

{
  "name": "is_superuser - role",
  "authenticator": -1,
  "revoke": true,
  "map_type": "is_superuser",
  "team": null,
  "organization": null,
  "triggers": {
    "attributes": {
      "is_superuser": {
        "has_or": [
          "true"
        ]
      }
    }
  },
  "order": 2
}

{
  "name": "is_superuser - role",
  "authenticator": -1,
  "revoke": true,
  "map_type": "is_superuser",
  "team": null,
  "organization": null,
  "triggers": {
    "attributes": {
      "is_superuser": {
        "has_or": [
          "true"
        ]
      }
    }
  },
  "order": 2
}

Copy to Clipboard

Toggle word wrap

トップに戻る

6.3. 認証タイプ: SAML

詳細情報

試用、購入および販売

コミュニティー

Red Hat ドキュメントについて

多様性を受け入れるオープンソースの強化

会社概要

Theme

Red Hat legal and privacy links

Red Hat legal and privacy links