03-28-2022 09:45 AM
Hi there,
We are using the Hyland identity server (v. 2.4.1) to login to our OnBase system (EP4, 20.8.10) with saml authentication and AzureAD.
When we log in directely with the Onbase AppNet server address, all is going well.
But when we try to use the myapps portal from Microsoft, we get an error:
Sustainsys.Saml2.Exceptions.Saml2ResponseFailedValidationException: Unsolicited responses are not allowed for idp
I suppose this behavior comes because of the idp-initiated-SSO must be allowed.
Is that right ?
Is this mode (idp-initiated-sso) can be supported by the hyland identity provider?
How can it be configured in the hyland idp server ?
Thanks in advance
03-28-2022 09:52 AM
Hi
The Hyland IDP does not support IdP-Initiated authentication. Only SP-Initiated. This is why you see the behavior that you do.
Best wishes.
03-28-2022 09:52 AM
Hi
The Hyland IDP does not support IdP-Initiated authentication. Only SP-Initiated. This is why you see the behavior that you do.
Best wishes.
03-28-2022 10:35 PM
Hello Adam,
Thank you for your answer - bad for us.
Is that capability in the backlog or does I post a new idea ?
Kind regard
03-29-2022 05:45 AM
Hi
There is a feature epic for this functionality, however it is currently on the backlog as of OnBase Foundation EP5 and has not been scheduled for the next version. I would recommend you create an Ideas post. You can reference Jira Feature Epic IAMPRO-97 in your notes which is the development card to enhance the product.
Best wishes.
Find what you came for
We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.