Hi support,
we're trying to use SAML 2.0 beta in PureCloud, and we've imported the metadata in Generic SSO Provider.
Customer asks to have a certificate from Purecloud to configure the federation.
It's correct that? we remember that using ADFS the federation was created when making the certificate, in SAML 2.0 is the same?
BR Alessandro
That is not correct. PureCloud does not support signatures over AuthnRequests, so there is nothing for the IDP to validate via certificate, and no need to configure one.
The only certificate required is IDP signing certificate, used by PureCloud to validate signatures on the Response/Assertion.
Thanks John,
Alessandro
Hi John,
our customer tell that he needs an additional metadata from Genesys side, to complete the trust of SAML authentication and to complete the configuration of federation.
In case you confirm that a certificate isn't necessary from genesys side, could you give us a procedure, so the customer could generate the metadata without asks us a metadata?
BR Alessandro
I'm not sure what additional metadata you're looking for. Can you elaborate on exactly what you're looking for Genesys to provide?
Alessandro,
We have future work planned to generate federation metadata for identity providers, but there is no mechanism to do so now (other than manually). Please vote for this idea in our Ideas Portal to receive status updates and see progress once we begin development later this year.
This topic was automatically closed 31 days after the last reply. New replies are no longer allowed.