0 votes

I'm trying to enable SSO using SAML with AzureAD as the IDP. I'm struggling to get it to work, we use a BIG-IP as our loadbalancer which handles the SSL offloading. Adaxes webinterface runs on port 80 behind the loadbalancer.

The reply url is the saml response provided by adaxes is using http instead of https which AzureAD does not like. AzureAD does not allow you to put http addresses for the reply url.

The Web Interface address configured in adaxes is something like: https://adaxes,company.com

Does anybody have experience with this setup using SSL offloading or am I forced to remove the SSL offloading and do it on the server itself?

by (90 points)

1 Answer

0 votes
by (6k points)

Hello!

Unfortunately, we do not have any experience configuring Adaxes to work with Azure AD as an Identity Provider in conjunction with SSL offloading. As per our check, there is no possibility to configure the desired workflow. However we recommend considering a possibility to contact BIG-IP support to check for possible solutions.

Related questions

0 votes
1 answer

We were used to bind to group member object using: $member = $Context.BindToObjectByDN("%member%") which worked perfectly, but now it is not. Its because %member% is returning ... ? And is it possible to get DN of added/removed member using another variable?

asked Sep 14, 2020 by KIT (520 points)
0 votes
1 answer

Is it possible after a user logs in to be Redirect to the Home Page (if enabled) ? If so where would that need to be changed? I've found multiple difference Web Config ... where or how it gets redirected to the My Properties page so it can be changed. Thanks

asked Jul 23, 2019 by Helios5287 (100 points)
0 votes
1 answer

Currently, when I disable a user account in Adaxes, the group memberships of the user remain intact. I'd like to automate the removal of group memberships such as distribution ... a list of groups/DL that the user was previously in and removed from. Thanks!

asked Nov 3, 2021 by jayden.ang (20 points)
0 votes
1 answer

Is it possible to send an email from Adaxes when certain AD objects are modified outside of Adaxes? With Business Rules it looks pretty easy to do that inside of Adaxes ... something changes on the object and the change was not initiated by Adaxes. Thank you.

asked Jul 23, 2021 by mikek (80 points)
0 votes
1 answer

We have four OUs in Active Directory (Pending Deletion, Disabled with Mail Delegates, Disabled with HR Extensions and Disabled_Temp_Leave) that users are moved to prior to their eventual ... past 7 days have been moved to one of 4 of these OUs. Thanks!

asked Jun 3, 2021 by RayBilyk (180 points)
2,640 questions
2,375 answers
6,305 comments
986,035 users