Quite shameful to ask but still unable to find anything relevant: Did anyone manage to configure SAML SSO between Knox and ADFS? The goal is to get into Zeppelin with proper mappings. Zeppelin along with standalone knox/ldap is configured, the problem is ADFS.
Regardless of the URL syntax, on the ADFS side getting the following: >Microsoft.IdentityModel.SecurityTokenService.InvalidScopeException: MSIS3055: The requested relying party trust 'https://<knox-fqdn>:8443/gateway/knoxsso/api/v1/websso' is unspecified or unsupported. If a relying party trust was specified, it is possible the user does not have permission to access the relying party trust. ---> Therefore SAML response for knox is "org.pac4j.saml.exceptions.SAMLException: Response is not success ; actual urn:oasis:names:tc:SAML:2.0:status:Responder" I set party identified for Knox as follows: https:// <knox-fqdn>:8443/gateway/knoxsso/api/v1/websso?pac4jCallback=true&client_name=SAML2Client Anything missed? Can't believe no one ever tested it. Thanks a lot
