Message Image

Skip main navigation (Press Enter).

Symantec Access Management

View Only

Back to discussions

Expand all | Collapse all

PAM CLUSTER & SSO with SAML

1. PAM CLUSTER & SSO with SAML

0 Recommend
MTrucillo
Posted Apr 27, 2020 06:20 AM

Reply Reply Privately
Hi,
I have a pam cluster with 3 nodes (3.3.2.99) and I'd like to configure SSO auth. (PAM is RP and SSO is SP).
In the past I made this configuration and it worked (The cluster had VIP-FQDN configured [example FQDN.PAM.TLD] butù
embers had nat / fqdn field)blank. Now this configuration not work anymore so I have

VIP-FQDN: FQDN.PAM.TLD

FQDN-MEMBER1: FQDN-1.PAM.TLD

FQDN-MEMBER2: FQDN-2PAM.TLD

FQDN-MEMBER3: FQDN-2PAM.TLD

so when I type in the browser https://FQDN.PAM.TLD I will redirect to https://FQDN-1.PAM.TLD (or FQDN-2 or FQDN-3)

Now how should I change the SAML configuration on the SSO side ?
Do I have to use a different entity ID for each member of the cluster?

Thanks in advance

Copyright 2019. All rights reserved.

Powered by Higher Logic