Hello,
I have install mautic in the localhost. In the SAML SSO Settings page I have entered the relevant details and saved/applied changes. I got the metadata from the url https://127.0.0.1/mautic/saml/metadata.xml and configured it in my IDP that uses Shibboleth (IDP is also in my network). Now when I try to access the mautic page it gets rightly redirected to the IDP. But after logging in I am getting redirected to the login page of mautic again with the message “Assertions must be signed”.
What should I be doing to fix this? Have I missed anything in the documentation?
Thanks in advance.
Hello,
I have install mautic in the localhost. In the SAML SSO Settings page I have entered the relevant details and saved/applied changes. I got the metadata from the url https://127.0.0.1/mautic/saml/metadata.xml and configured it in my IDP that uses Shibboleth (IDP is also in my network). Now when I try to access the mautic page it gets rightly redirected to the IDP. But after logging in I am getting redirected to the login page of mautic again with the message “Assertions must be signed”.
What should I be doing to fix this? Have I missed anything in the documentation?
Thanks in advance.
Old post, so I’ll just leave this here for future reference.
One must define a relaying party (relaying-party.xml) for the Mautic SP, such as:
<bean parent="RelyingPartyByName" c:relyingPartyIds="https://mautic.example.org">
<property name="profileConfigurations">
<list>
<bean parent="SAML2.SSO" p:encryptAssertions="false" p:signAssertions="true" p:nameIDFormatPrecedence="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" />
</list>
</property>
</bean>