Airlock IAM may be configured as a SAML identity provider (IDP) and service provider (SP). This article provides hints how to configure the Loginapp UI for IAM.
SAML configuration for the Loginapp UI
SAML is configured mainly in the Loginapp REST API: see SAML IDP setup with the Loginapp REST API and SAML SP setup with the Loginapp REST API.
The following configuration steps are necessary in addition to the above mentioned REST API configuration:
- Go to:
Loginapp >> UI Settings >> Authentication UIs - Flow UIs: make sure there is an Authentication & Authorization UI for every configured SAML SP or IDP target application. There are no SAML-specific settings in the UI plugin.
- If SAML SLO (single logout) is used, configure the On Logout property as follows:
- Use the SAML2 Single Logout Config plugin
- Define a specific Default Target URI if required. It is used if no Location parameter is present or if it is not valid for SAML SLO.