Reputation: 23
Change WSO2 publisher and devportal(i.e store) SAML SSO from default API manager to Identity Server
I have setup an environment with WSO2 Identity Server(wso2is-km-5.9.0) on Node 1 and WSO2 Api Manager(wso2am-3.0.0) on Node 2 where Node 1 serves all token related requests. And my aim is to acheive SSO between all service providers that I on-board to this setup, but in WSO2 API manager(3.0.0) the publisher and devportal are by default SAML integrated with API- manager. How do I change SSO login of Devportal and Publisher from API-manager to Identity-Server, as the Publisher and Devportal are now using token issued by API-manager and the Service Providers are using token issued by Identity server, therefore SSO is not happening between these entities.
Upvotes: 0
Views: 198
Answers (1)
Reputation: 1515
To achieve SSO between saml apps in APIM, you can configure IS as a federated IDP in APIM and do SSO with Identity Server.
Please refer to this document to configure Identity Server as an IDP for SSO https://apim.docs.wso2.com/en/latest/Learn/Extensions/SAML2SSO/configuring-identity-server-as-idp-for-sso/
Upvotes: 1
Related Questions
- WSO2 API Publisher SSO with identity Server error 403
- WSO2 Identity Server SAML2 Response Issuer verification failed
- WSO2 identity server - SAML2 Response Issuer verification failed
- Unable to configure SAML2 Web SSO Configuration under Service Providers in WSO2 API Manager 3.0.0
- WSO2: IS and APIM SAML SSO Error - Error when processing authentication request
- SAML2BearerGrantHandler unable to verify signature
- WSO2 Identity Server sso-idp-config.xml Reference
- WSO2 IS setting Issuer in SAML Response to "localhost"
- WSO2 IS and API Manager SAML SSO - Login to store/publisher fail
- wso2carbon Identity Server SSO redirect to port 9443