https://connect.hyland.com/t5/alfresco-forum/alfresco-shibboleth-sso-configuration/m-p/48869#M18953 <HTML><HEAD></HEAD><BODY><P>It partly depends on how you want to configure your SSO - trying to put it as simply as possible, you can either authenticate before you get to share e.g. by configuring Apache, or you can modify share itself by changing the way that the filters are configured in web.xml by adding the appropriate jars/filters.</P><P>Either way you need request.getRemoteUser() to return the correct value.</P><P></P><P>(If you want log out as well then that's another level of complication)</P><P></P><P>If you look at&nbsp;<A class="link-titled" href="https://github.com/wrighting/alfresco-cas/tree/ACE-5661" title="https://github.com/wrighting/alfresco-cas/tree/ACE-5661" rel="nofollow noopener noreferrer">GitHub - wrighting/alfresco-cas at ACE-5661</A>&nbsp;you can see how this is done for CAS SSO (this produces amps that modify the web.xml) - the principal should be the same if you replace the CAS client jars, and references in the web.xml with the shibboleth equivalent.</P><P></P><P>Good luck....</P></BODY></HTML> Thu, 07 Feb 2019 11:57:19 GMT idwright 2019-02-07T11:57:19Z https://connect.hyland.com/t5/alfresco-forum/alfresco-shibboleth-sso-configuration/m-p/48868#M18952 I need to integrate Shibboleth with Alfresco Community 5.2 for SSO. I have installed Shibboleth SP(Service Provider) in my machine.&nbsp;Ideally Alfresco should redirect all the users to Idp (Identity Provider)&nbsp;URL from share/page, but I don't know what configurations I need to make for the same. I have Wed, 06 Feb 2019 09:34:18 GMT https://connect.hyland.com/t5/alfresco-forum/alfresco-shibboleth-sso-configuration/m-p/48868#M18952 kintu_barot 2019-02-06T09:34:18Z https://connect.hyland.com/t5/alfresco-forum/alfresco-shibboleth-sso-configuration/m-p/48869#M18953 <HTML><HEAD></HEAD><BODY><P>It partly depends on how you want to configure your SSO - trying to put it as simply as possible, you can either authenticate before you get to share e.g. by configuring Apache, or you can modify share itself by changing the way that the filters are configured in web.xml by adding the appropriate jars/filters.</P><P>Either way you need request.getRemoteUser() to return the correct value.</P><P></P><P>(If you want log out as well then that's another level of complication)</P><P></P><P>If you look at&nbsp;<A class="link-titled" href="https://github.com/wrighting/alfresco-cas/tree/ACE-5661" title="https://github.com/wrighting/alfresco-cas/tree/ACE-5661" rel="nofollow noopener noreferrer">GitHub - wrighting/alfresco-cas at ACE-5661</A>&nbsp;you can see how this is done for CAS SSO (this produces amps that modify the web.xml) - the principal should be the same if you replace the CAS client jars, and references in the web.xml with the shibboleth equivalent.</P><P></P><P>Good luck....</P></BODY></HTML> Thu, 07 Feb 2019 11:57:19 GMT https://connect.hyland.com/t5/alfresco-forum/alfresco-shibboleth-sso-configuration/m-p/48869#M18953 idwright 2019-02-07T11:57:19Z https://connect.hyland.com/t5/alfresco-forum/alfresco-shibboleth-sso-configuration/m-p/48870#M18954 <HTML><HEAD></HEAD><BODY><P>Yes, I want to skip default login and directly want users to be authenticated at IDP.</P><P>I'll give it a try.</P><P></P><P>Thank You,&nbsp;Ian.</P></BODY></HTML> Thu, 07 Feb 2019 13:49:08 GMT https://connect.hyland.com/t5/alfresco-forum/alfresco-shibboleth-sso-configuration/m-p/48870#M18954 kintu_barot 2019-02-07T13:49:08Z