Re: [SOGo] Authenticating using SAML2

2021-05-03 Thread Odhiambo Washington 
On Thu, Apr 29, 2021 at 2:47 PM Alexander Podolyan  wrote:

> I'm trying to set up SOGo with SAML2 authentication, but I don't know how
> to generate SSL keys.
>
> In /etc/sogo/sogo.conf I have to specify the following variables:
>
> //SAML2
> SOGoAuthenticationType = saml2;
> SOGoSAML2PrivateKeyLocation = /certs/saml_sogo.key;
> SOGoSAML2CertificateLocation = /certs/saml_sogo.pem;
> SOGoSAML2IdpMetadataLocation = /etc/sogo/keycloak.xml;
> SOGoSAML2IdpPublicKeyLocation = /certs/saml_sso.pub;
> SOGoSAML2IdpCertificateLocation = /certs/saml_sso.pem;
> SOGoSAML2LogoutEnabled = YES;
> SOGoSAML2LogoutURL = https://domain.com;
>
> How to create saml_sogo.key, saml_sogo.pem, keycloak.xml, saml_sso.pub,
> saml_sso.pem?
>

Download and look at the scripts in this file: https://bit.ly/3aVBRpO

>From 'Re: [SOGo] SAML2 authentication requirements' - MARC
, I can see that you
can use:


openssl req -newkey rsa:2048 -new -x509 -days 3652 -nodes -out
saml_sogo.crt -keyout saml_sogo.pem

For the .pem files, here is some good reading: ssl - How to get .pem file
from .key and .crt files? - Stack Overflow



Coupled with the instructions from Re: [SOGo] Sogo - Lemonldap - Saml
(mail-archive.com ,
I believe you'll hack it.

PS: I don't even know what SAML is :-)



-- 
Best regards,
Odhiambo WASHINGTON,
Nairobi,KE
+254 7 3200 0004/+254 7 2274 3223
"Oh, the cruft.", grep ^[^#] :-)
-- 
users@sogo.nu
https://inverse.ca/sogo/lists

[SOGo] Authenticating using SAML2

2021-04-29 Thread Alexander Podolyan 
I'm trying to set up SOGo with SAML2 authentication, but I don't know 
how to generate SSL keys.


In /etc/sogo/sogo.conf I have to specify the following variables:

//SAML2
SOGoAuthenticationType = saml2;
SOGoSAML2PrivateKeyLocation = /certs/saml_sogo.key;
SOGoSAML2CertificateLocation = /certs/saml_sogo.pem;
SOGoSAML2IdpMetadataLocation = /etc/sogo/keycloak.xml;
SOGoSAML2IdpPublicKeyLocation = /certs/saml_sso.pub;
SOGoSAML2IdpCertificateLocation = /certs/saml_sso.pem;
SOGoSAML2LogoutEnabled = YES;
SOGoSAML2LogoutURL = https://domain.com;

How to create saml_sogo.key, saml_sogo.pem, keycloak.xml, saml_sso.pub, 
saml_sso.pem?


--

*Alexander Podolyan*
Junior Python Developer, Vesedia, Inc.
alexander@openocean.academy  | 
vesedia.com 


--
users@sogo.nu
https://inverse.ca/sogo/lists