I’m trying to use SAML authentification on pritunl, but i can’t manage. 2 weeks trying … I do a lot of idp on my F5, maybe 20 product using it.
I create a special IDP for this configuration, working perfectly with htps://sptes t.iamshowcase.com/ (saml idp/sp test tool).
All the tutorial i found are based on cloud provider, okta etc.
I will pute the metadata of my IDP, can you tell me what to put in the pritunl configuration ? For now, when i try to log with SAML, i m correctly redirect to my IDP, AUTH OK, but then, no redirection to the Pritunl.
Documentation isn’t available for other SAML providers. It’s important to use a SAML provider with an API because this allows checks to occur at each VPN connection and in the newer releases every hour during a VPN connection to verify the state of the user. This would prevent and disconnect a user from Pritunl who has been removed or disabled from the single sign-on provider. All single sign-on providers supported by Pritunl have API integration. The generic SAML and Radius configurations do not have this functionality.
Using other SAML providers should only be done with single sign-on connection authentication which will provide some checks. But if this is used with authentication cache the user check would only occur when the authentication cache expires.