[cas-user] Re: CAS V5.3 with Zoom SSO???
We did with saml too, but with the Shibboleth "half" of our CAS+Shibboleth combined service. If you are looking for guidance using CAS as saml IDP with it, sorry, can't help. As for the integration, once you get it going, on the zoom side you can map attribute values to zoom roles. And it auto-creates user account on first sso login to zoom. -William On Tuesday, May 12, 2020 at 4:37:03 PM UTC-5, Keith Alston (Staff) wrote: > > Anyone set up Zoom SSO with CAS?? Any pointers/tips?? > > > > -Keith Alston > > kei...@regent.edu > > Regent University > > 757-619-3421 > > > -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/773af5d2-9d83-4f2c-b931-a3afbd02486a%40apereo.org.
[cas-user] Re: CAS V5.3 with Zoom SSO???
We are using pure SAML with Zoom, and it was not the easiest thingto setup, but it is working. What have you tried thus far? On Tuesday, May 12, 2020 at 5:37:03 PM UTC-4, Keith Alston (Staff) wrote: > > Anyone set up Zoom SSO with CAS?? Any pointers/tips?? > > > > -Keith Alston > > kei...@regent.edu > > Regent University > > 757-619-3421 > > > -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/128fffa9-c0da-40b9-9873-acb5698b22f6%40apereo.org.
Re: [cas-user] Re: CAS V5.3 with Zoom SSO???
Are you running into any issues?
You need to have SAML setup first.
Here is a modified copy of our service registry entry: (modify attributes
as needed)
{
"id" : 12,
"@class" : "org.apereo.cas.support.saml.services.SamlRegisteredService",
"metadataLocation" : "https://regent.zoom.us/saml/metadata/sp";,
"metadataExpirationDuration" : "PT60M",
"signAssertions" : true,
"skipGeneratingAssertionNameId" : false,
"skipGeneratingSubjectConfirmationInResponseTo" : false,
"skipGeneratingSubjectConfirmationNotOnOrAfter" : false,
"skipGeneratingSubjectConfirmationRecipient" : false,
"skipGeneratingSubjectConfirmationNotBefore" : true,
"signResponses" : true,
"encryptAssertions" : false,
"metadataCriteriaRoles" : "SPSSODescriptor",
"metadataCriteriaRemoveEmptyEntitiesDescriptors" : true,
"metadataCriteriaRemoveRolelessEntityDescriptors" : true,
"signingCredentialType" : "BASIC",
"serviceId" : "regent.zoom.us",
"name" : "Zoom",
"logo" : "/cas/images/services/zoom_logo.png",
"description" : "Zoom",
"evaluationOrder" : 12,
"usernameAttributeProvider" : {
"@class" :
"org.apereo.cas.services.PrincipalAttributeRegisteredServiceUsernameProvider"
,
"usernameAttribute" : "mail",
"canonicalizationMode" : "NONE",
"encryptUsername" : false
},
"attributeReleasePolicy" : {
"@class" : "org.apereo.cas.services.ReturnAllowedAttributeReleasePolicy",
"allowedAttributes" : [ "java.util.ArrayList", [ "givenName", "mail",
"surname", "memberOf" ] ]
},
"logoutType" : "BACK_CHANNEL",
"logoutUrl" : "https://regent.zoom.us/saml/SingleLogout";,
"accessStrategy" : {
"@class" : "org.apereo.cas.services.DefaultRegisteredServiceAccessStrategy",
"enabled" : true,
"ssoEnabled" : true
}
}
On Fri, May 15, 2020 at 7:08 AM Shawn Cutting wrote:
> We are using pure SAML with Zoom, and it was not the easiest thingto
> setup, but it is working. What have you tried thus far?
>
> On Tuesday, May 12, 2020 at 5:37:03 PM UTC-4, Keith Alston (Staff) wrote:
>>
>> Anyone set up Zoom SSO with CAS?? Any pointers/tips??
>>
>>
>>
>> -Keith Alston
>>
>> kei...@regent.edu
>>
>> Regent University
>>
>> 757-619-3421
>>
>>
>>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit
> https://groups.google.com/a/apereo.org/d/msgid/cas-user/128fffa9-c0da-40b9-9873-acb5698b22f6%40apereo.org
>
> .
>
--
Robert Bond
Network Administrator
(918) 444-5886
Northeastern State University
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAOA9z6pYH3Gm5KU3mMZ9Wp2Ka-CxD%3DKdER5BuFsSWgPCER7hMA%40mail.gmail.com.
Re: [cas-user] Re: CAS V5.3 with Zoom SSO???
No problem.
Glad to hear it is working.
A lot of those parameters are default
Thanks!
On Fri, May 22, 2020 at 8:17 AM Keith Alston (Staff)
wrote:
> WOW! Thanks for sharing your registry entry.
>
>
>
> I did get this working and it actually was pretty straightforward. My
> registry entry was way smaller but I’m going to research those parameters
> now!
>
>
>
> Thanks!
>
>
>
> *From:* Robert Bond [mailto:bo...@nsuok.edu]
> *Sent:* Friday, May 15, 2020 10:53 AM
> *To:* cas-user@apereo.org
> *Cc:* Keith Alston (Staff)
> *Subject:* Re: [cas-user] Re: CAS V5.3 with Zoom SSO???
>
>
>
> Are you running into any issues?
>
> You need to have SAML setup first.
>
>
>
> Here is a modified copy of our service registry entry: (modify attributes
> as needed)
>
> {
>
> "id" : 12,
>
> "@class" :
> "org.apereo.cas.support.saml.services.SamlRegisteredService",
>
>"metadataLocation" : "https://regent.zoom.us/saml/metadata/sp";,
>
> "metadataExpirationDuration" : "PT60M",
>
> "signAssertions" : true,
>
> "skipGeneratingAssertionNameId" : false,
>
> "skipGeneratingSubjectConfirmationInResponseTo" : false,
>
> "skipGeneratingSubjectConfirmationNotOnOrAfter" : false,
>
> "skipGeneratingSubjectConfirmationRecipient" : false,
>
> "skipGeneratingSubjectConfirmationNotBefore" : true,
>
> "signResponses" : true,
>
> "encryptAssertions" : false,
>
> "metadataCriteriaRoles" : "SPSSODescriptor",
>
> "metadataCriteriaRemoveEmptyEntitiesDescriptors" : true,
>
> "metadataCriteriaRemoveRolelessEntityDescriptors" : true,
>
> "signingCredentialType" : "BASIC",
>
> "serviceId" : "regent.zoom.us",
>
> "name" : "Zoom",
>
> "logo" : "/cas/images/services/zoom_logo.png",
>
> "description" : "Zoom",
>
> "evaluationOrder" : 12,
>
> "usernameAttributeProvider" : {
>
> "@class" :
> "org.apereo.cas.services.PrincipalAttributeRegisteredServiceUsernameProvider"
> ,
>
> "usernameAttribute" : "mail",
>
> "canonicalizationMode" : "NONE",
>
> "encryptUsername" : false
>
> },
>
> "attributeReleasePolicy" : {
>
> "@class" :
> "org.apereo.cas.services.ReturnAllowedAttributeReleasePolicy",
>
> "allowedAttributes" : [ "java.util.ArrayList", [ "givenName",
> "mail", "surname", "memberOf" ] ]
>
> },
>
> "logoutType" : "BACK_CHANNEL",
>
> "logoutUrl" : "https://regent.zoom.us/saml/SingleLogout";,
>
> "accessStrategy" : {
>
> "@class" :
> "org.apereo.cas.services.DefaultRegisteredServiceAccessStrategy",
>
> "enabled" : true,
>
> "ssoEnabled" : true
>
> }
>
> }
>
>
>
>
>
> On Fri, May 15, 2020 at 7:08 AM Shawn Cutting
> wrote:
>
> We are using pure SAML with Zoom, and it was not the easiest thingto
> setup, but it is working. What have you tried thus far?
>
>
> On Tuesday, May 12, 2020 at 5:37:03 PM UTC-4, Keith Alston (Staff) wrote:
>
> Anyone set up Zoom SSO with CAS?? Any pointers/tips??
>
>
>
> -Keith Alston
>
> kei...@regent.edu
>
> Regent University
>
> 757-619-3421
>
>
>
> --
> - Website: https://apereo.github.io/cas
> <https://urldefense.com/v3/__https:/apereo.github.io/cas__;!!CHfpmW4!zV3g_3AIBn3tGL_r9M53MUbT8FyxPjj7xxpKv11147-fSKUSRgTxvTvPuagCLXTy$>
> - Gitter Chatroom: https://gitter.im/apereo/cas
> <https://urldefense.com/v3/__https:/gitter.im/apereo/cas__;!!CHfpmW4!zV3g_3AIBn3tGL_r9M53MUbT8FyxPjj7xxpKv11147-fSKUSRgTxvTvPuQA9cgzO$>
> - List Guidelines: https://goo.gl/1VRrw7
> <https://urldefense.com/v3/__https:/goo.gl/1VRrw7__;!!CHfpmW4!zV3g_3AIBn3tGL_r9M53MUbT8FyxPjj7xxpKv11147-fSKUSRgTxvTvPueO_unHa$>
> - Contributions: https://goo.gl/mh7qDG
> <https://urldefense.com/v3/__https:/goo.gl/mh7qDG__;!!CHfpmW4!zV3g_3AIBn3tGL_r9M53MUbT8FyxPjj7xxpKv11147-fSKUSRgTxvTvPuf0jvnk5$>
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop
RE: [cas-user] Re: CAS V5.3 with Zoom SSO???
WOW! Thanks for sharing your registry entry.
I did get this working and it actually was pretty straightforward. My registry
entry was way smaller but I’m going to research those parameters now!
Thanks!
From: Robert Bond [mailto:bo...@nsuok.edu]
Sent: Friday, May 15, 2020 10:53 AM
To: cas-user@apereo.org
Cc: Keith Alston (Staff)
Subject: Re: [cas-user] Re: CAS V5.3 with Zoom SSO???
Are you running into any issues?
You need to have SAML setup first.
Here is a modified copy of our service registry entry: (modify attributes as
needed)
{
"id" : 12,
"@class" : "org.apereo.cas.support.saml.services.SamlRegisteredService",
"metadataLocation" : "https://regent.zoom.us/saml/metadata/sp";,
"metadataExpirationDuration" : "PT60M",
"signAssertions" : true,
"skipGeneratingAssertionNameId" : false,
"skipGeneratingSubjectConfirmationInResponseTo" : false,
"skipGeneratingSubjectConfirmationNotOnOrAfter" : false,
"skipGeneratingSubjectConfirmationRecipient" : false,
"skipGeneratingSubjectConfirmationNotBefore" : true,
"signResponses" : true,
"encryptAssertions" : false,
"metadataCriteriaRoles" : "SPSSODescriptor",
"metadataCriteriaRemoveEmptyEntitiesDescriptors" : true,
"metadataCriteriaRemoveRolelessEntityDescriptors" : true,
"signingCredentialType" : "BASIC",
"serviceId" : "regent.zoom.us<http://regent.zoom.us>",
"name" : "Zoom",
"logo" : "/cas/images/services/zoom_logo.png",
"description" : "Zoom",
"evaluationOrder" : 12,
"usernameAttributeProvider" : {
"@class" :
"org.apereo.cas.services.PrincipalAttributeRegisteredServiceUsernameProvider",
"usernameAttribute" : "mail",
"canonicalizationMode" : "NONE",
"encryptUsername" : false
},
"attributeReleasePolicy" : {
"@class" :
"org.apereo.cas.services.ReturnAllowedAttributeReleasePolicy",
"allowedAttributes" : [ "java.util.ArrayList", [ "givenName", "mail",
"surname", "memberOf" ] ]
},
"logoutType" : "BACK_CHANNEL",
"logoutUrl" : "https://regent.zoom.us/saml/SingleLogout";,
"accessStrategy" : {
"@class" :
"org.apereo.cas.services.DefaultRegisteredServiceAccessStrategy",
"enabled" : true,
"ssoEnabled" : true
}
}
On Fri, May 15, 2020 at 7:08 AM Shawn Cutting
mailto:scutt...@messiah.edu>> wrote:
We are using pure SAML with Zoom, and it was not the easiest thingto setup, but
it is working. What have you tried thus far?
On Tuesday, May 12, 2020 at 5:37:03 PM UTC-4, Keith Alston (Staff) wrote:
Anyone set up Zoom SSO with CAS?? Any pointers/tips??
-Keith Alston
kei...@regent.edu<mailto:kei...@regent.edu>
Regent University
757-619-3421
--
- Website:
https://apereo.github.io/cas<https://urldefense.com/v3/__https:/apereo.github.io/cas__;!!CHfpmW4!zV3g_3AIBn3tGL_r9M53MUbT8FyxPjj7xxpKv11147-fSKUSRgTxvTvPuagCLXTy$>
- Gitter Chatroom:
https://gitter.im/apereo/cas<https://urldefense.com/v3/__https:/gitter.im/apereo/cas__;!!CHfpmW4!zV3g_3AIBn3tGL_r9M53MUbT8FyxPjj7xxpKv11147-fSKUSRgTxvTvPuQA9cgzO$>
- List Guidelines:
https://goo.gl/1VRrw7<https://urldefense.com/v3/__https:/goo.gl/1VRrw7__;!!CHfpmW4!zV3g_3AIBn3tGL_r9M53MUbT8FyxPjj7xxpKv11147-fSKUSRgTxvTvPueO_unHa$>
- Contributions:
https://goo.gl/mh7qDG<https://urldefense.com/v3/__https:/goo.gl/mh7qDG__;!!CHfpmW4!zV3g_3AIBn3tGL_r9M53MUbT8FyxPjj7xxpKv11147-fSKUSRgTxvTvPuf0jvnk5$>
---
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to cas-user+unsubscr...@apereo.org<mailto:cas-user+unsubscr...@apereo.org>.
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/128fffa9-c0da-40b9-9873-acb5698b22f6%40apereo.org<https://urldefense.com/v3/__https:/groups.google.com/a/apereo.org/d/msgid/cas-user/128fffa9-c0da-40b9-9873-acb5698b22f6*40apereo.org?utm_medium=email&utm_source=footer__;JQ!!CHfpmW4!zV3g_3AIBn3tGL_r9M53MUbT8FyxPjj7xxpKv11147-fSKUSRgTxvTvPueZGp6NX$>.
--
Robert Bond
Network Administrator
(918) 444-5886
Northeastern State University
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/BL0PR10MB2995D76802A41A8AC9B39E9CD9B40%40BL0PR10MB2995.namprd10.prod.outlook.com.
