Guacamole SAML Authentication Extension

["St Amant, Mitchell" <Mi...@wolterskluwer.com.INVALID>]

Hello,

I am not seeming to be able to get the SAML Authentication extension working to map user groups. I am using Postgre local DB with Azure AD. I can confirm via debug logs that the SAML provider is sending the user groups as expected.

SAML Debug output:

[cid:4381e46e-d24a-4c15-b1d9-66b4d8e901ab]

guacamole.properties:

[cid:c48f210d-d2bc-4378-8376-866f2a76c76e]

I have added a User Group and corresponding entity in the Guacamole DB with an identical name as one that is being returned by the SAML response.


Any assistance and/or guidance is greatly appreciated. Keep up the amazing work on amazing open source software.


Best,

Mitchell



Mitchell St Amant (He/Him)

Senior Cloud Architect
Enablon
mitchell.stamant@wolterskluwer.com<ma...@wolterskluwer.com>

[cid:c99fcd08-18ba-4a5e-a198-ba53b08158ca]

About Enablon:
Website<https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fenablon.com%2F&data=04%7C01%7CMitchell.StAmant%40wolterskluwer.com%7C906bb43b3a844950d46c08d94b911211%7C8ac76c91e7f141ffa89c3553b2da2c17%7C0%7C0%7C637623908703082182%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=hAmd1zzClVsWwWWi813pN7ynyBrHbbT2QUwQZkTQ%2BSo%3D&reserved=0> | News<https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fenablon.com%2Fpress-releases&data=04%7C01%7CMitchell.StAmant%40wolterskluwer.com%7C906bb43b3a844950d46c08d94b911211%7C8ac76c91e7f141ffa89c3553b2da2c17%7C0%7C0%7C637623908703092176%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=z7B%2F%2FEICKZHS7zur1sZ4y%2FZAZEJNv24YsBQBwWxZdXQ%3D&reserved=0> | Insights<https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fenablon.com%2Fblog&data=04%7C01%7CMitchell.StAmant%40wolterskluwer.com%7C906bb43b3a844950d46c08d94b911211%7C8ac76c91e7f141ffa89c3553b2da2c17%7C0%7C0%7C637623908703102171%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=sTahkhlVoXBU3P4GeGFbUEwATB9g6ajvpI%2BdL453jkA%3D&reserved=0> | LinkedIn<https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2Fenablon&data=04%7C01%7CMitchell.StAmant%40wolterskluwer.com%7C906bb43b3a844950d46c08d94b911211%7C8ac76c91e7f141ffa89c3553b2da2c17%7C0%7C0%7C637623908703102171%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=vhGkxngvhhQKJgxe9AySkx8Z4XCNNLTdemlv621b%2B0o%3D&reserved=0> | Twitter<https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Ftwitter.com%2FEnablon&data=04%7C01%7CMitchell.StAmant%40wolterskluwer.com%7C906bb43b3a844950d46c08d94b911211%7C8ac76c91e7f141ffa89c3553b2da2c17%7C0%7C0%7C637623908703112164%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=MpJpXG1l8tsi0xv2BKeNZtwnVxm9cj9r9PMhIcIdW7A%3D&reserved=0>


[Enablon]<https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fenablon.com%2F&data=04%7C01%7CMitchell.StAmant%40wolterskluwer.com%7C906bb43b3a844950d46c08d94b911211%7C8ac76c91e7f141ffa89c3553b2da2c17%7C0%7C0%7C637623908703122161%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=a6YJLcrHIzomed23AnSjtsy1BD8N%2Bago9XHzTRaYJH4%3D&reserved=0>




Confidentiality Notice: This email and any attachments may contain confidential or privileged information that is intended for the addressee only. If you are not an intended recipient of the original sender (or responsible for delivering the message to such person), you are hereby notified that any review, disclosure, copying, distribution or the taking of any action in reliance of the contents of and attachments to this email is strictly prohibited. If you have received this email in error, please immediately notify the sender at the address shown herein and permanently delete any copies of this email (digital or paper) in your possession. Wolters Kluwer shall not be liable for the incorrect or incomplete transmission of this email or any attachments, nor for unauthorized use by its employees.